[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [Simple] Presence Authorization Discussion B: Composition/Auth Sequencing

Hi Stefan and all,

I agree that it is actually hard to separate composition and authorization from each other if both of them are watcher-dependent. (And I think there is some value that even composition can be watcher-dependent, such as the ability to show different person information to different watchers.) But if you assume that the same rulemaker makes rules for both functions, the rulemaker can at least in theory keep things consistent even if composition happens first and authorization after that. But if the composition policy is not understood by the auth policy rulemaker AND composition happens first, he can't make even auth rules that have a deterministic outcome. At the moment, before the details of composition policy are defined, we are at this kind of situation.

Markus 

> -----Original Message-----
> From: simple-bounces at ietf.org 
> [mailto:simple-bounces at ietf.org]On Behalf
> Of ext Goeman Stefan
> Sent: 13 October, 2004 13:08
> To: 'simple at ietf.org'
> Subject: RE: [Simple] Presence Authorization Discussion B:
> Composition/Auth Sequencing
> 
> 
> Hello,
> 
> I would agree on the order of first composition and then 
> authorization in
> the case that composition would be watcher independent.
> 
> But in light of the discussion of watcher dependent 
> composition I would
> favor the other way around (first authorization and the composition).
> Because, does it make sense to do a watcher dependent 
> composition and spent
> time and processing power on it, to find out later that you 
> will block this
> watcher.
> 
> Greetings,
> Stefan.
> 
> > -----Original Message-----
> > From: simple-bounces at ietf.org 
> > [mailto:simple-bounces at ietf.org] On Behalf Of Jonathan Rosenberg
> > Sent: maandag 11 oktober 2004 9:43
> > To: Simple WG
> > Subject: [Simple] Presence Authorization Discussion B: 
> > Composition/Auth Sequencing
> > 
> > 
> > We had a lot of list discussion at some point about whether 
> > composition 
> > came first or whether authorization came first, and about 
> > where the line 
> > between one ended and the next began.
> > 
> > I think this is much clearer now in light of the data model, 
> > which very 
> > explicitly separates the roles of composition (correlation, 
> conflict 
> > resolution, merging and splitting) and privacy filtering based on 
> > authorization rules. The former happens first. Indeed, I 
> > think the data 
> > model gives us a good grounding to start a discussion later 
> on about 
> > what we might want composition policy documents to look like. 
> > But lets 
> > hold that off until we finish our basic work.
> > 
> > Thanks,
> > Jonathan R.
> > -- 
> > Jonathan D. Rosenberg, Ph.D.                600 Lanidex Plaza
> > Chief Technology Officer                    Parsippany, NJ 
> 07054-2711
> > dynamicsoft
> > jdrosen at dynamicsoft.com                     FAX:   (973) 952-5050
> > http://www.jdrosen.net                      PHONE: (973) 952-5000
> > http://www.dynamicsoft.com
> > 
> > 
> > _______________________________________________
> > Simple mailing list
> > Simple at ietf.org
> > https://www1.ietf.org/mailman/listinfo/simple
> > 
> 
> _______________________________________________
> Simple mailing list
> Simple at ietf.org
> https://www1.ietf.org/mailman/listinfo/simple
> 

_______________________________________________
Simple mailing list
Simple at ietf.org
https://www1.ietf.org/mailman/listinfo/simple