WS-Policy

From Wikipedia, the free encyclopedia

WS-Policy is a specification that allows web services to use XML to advertise their policies (on security, Quality of Service, etc.) and for web service consumers to specify their policy requirements.

WS-Policy is now a W3C recommendation since September 2007.

WS-Policy represents a set of specifications that describe the capabilities and constraints of the security (and other business) policies on intermediaries and end points (for example, required security tokens, supported encryption algorithms, and privacy rules) and how to associate policies with services and end points.

Contents 1 Policy Assertion 2 Operator tags 3 Policy Intersection 4 See also 5 Associated specifications 6 External links

[edit] Policy Assertion

Assertions can either be requirements put upon a web service or an advertisement of the policies of a web service.

[edit] Operator tags

Two "operators" (XML tags) are used to make statements about policy combinations:

• wsp:ExactlyOne - asserts that only one child node must be satisfied.
• wsp:All - asserts that all child nodes must be satisfied.

Logically, an empty wsp:All tag makes no assertions.

[edit] Policy Intersection

This section's factual accuracy is disputed. Please see the relevant discussion on the talk page. (December 2009)

The policy intersection is a semantic (as opposed to syntactic) intersection of two policies. The intersection is a new policy that complies with both their requirements/capabilities - or, if the policies are incompatible, this is discovered by both parties.

Often synonymous assertions are considered incompatible by an policy intersection. This can easily be explained by the fact, that policy intersection is a syntactic approach, which does not incorporate semantics of the assertions. Furthermore it ignores the assertions parameters. Opposed to what the name might suggest, it is (although quite similar) not a set-intersection.

[edit] See also

• WS-PolicyAttachment
• WS-PolicyAssertions
• WS-Policy Framework

[edit] Associated specifications

The following draft specifications are associated with WS-Security:

• WS-SecureConversation
• WS-Federation
• WS-Authorization
• WS-Policy
• WS-Trust
• WS-Privacy
• WS-Test

[edit] External links

• The latest Web Services Policy 1.5 - Framework recommendation at W3C
• The latest Web Services Policy 1.5 - Primer note (an introduction) at W3C
• The Web Services Policy Working Group page at W3C
• WS-Policy specification
• IBM Developerworks WS-Policy page

This computer network-related article is a stub. You can help Wikipedia by expanding it. v • d • e