Топ-100

WS-Policy

WS-Policy is a specification that allows web services to use XML to advertise their policies and for web service consumers to specify their policy requirements.
WS-Policy is a W3C recommendation as of September 2007.
WS-Policy represents a set of specifications that describe the capabilities and constraints of the security and other business policies on intermediaries and end points and how to associate policies with services and end points.

image

1. Operator tags
Two "operators" XML tags are used to make statements about policy combinations:
wsp:All - asserts that all child nodes must be satisfied.
wsp:ExactlyOne - asserts that only one child node must be satisfied.
Logically, an empty wsp:All tag makes no assertions.

2. Policy Intersection
If both provider and consumer specify a policy, an effective policy will be computed which usually consists of the intersection of both policies. The new policy contains those assertions made by both sides which do not contradict each other. However, synonymous assertions are considered incompatible by a policy intersection. This can easily be explained by the fact that policy intersection is a syntactic approach, which does not incorporate the semantics of the assertions. Furthermore, it ignores the assertion parameters.
Opposed to what the name might suggest, a policy intersection is although quite similar not a set-intersection.

3. Associated specifications
WS-SecurityPolicy specifies security policy assertions for WS-Security, WS-Trust and WS-SecureConversation.
WS-Policy4MASC specifies management policies for Web services and their compositions.
WS-Policy - Attachment specifies how to add policies to WSDL and UDDI.

WS - Security Policy is a web services specification, created by IBM and 12 co - authors, that has become an OASIS standard as of version 1.2. It extends the
of WS - Policy with references to the WS - Policy W3C Recommendation WS - Policy 1.5 and fixes some minor errors. It is accompanied by the WS - RM Policy 1.2
services and there exist many WS - standards including WS - Addressing, WS - Discovery, WS - Federation, WS - Policy WS - Security, and WS - Trust. This page includes
specifications are associated with WS - Security: WS - SecureConversation WS - Federation WS - Authorization WS - Policy WS - Trust WS - Privacy List of Web service specifications
WS - Policy 4MASC is a policy language for managing Web services and their composition. WS - Policy 4MASC extends a widely used industrial standard, WS - Policy
and how WS - Policy can be used to indicate the support of WS - Addressing by a Web service. Web Services Policy Attachment for Endpoint Reference WS - PAEPR
WS - SecureConversation is a Web Services specification, created by IBM and others, that works in conjunction with WS - Security, WS - Trust and WS - Policy to
WS - MetaDataExchange is part of the WS - Federation roadmap and is designed to work in conjunction with WS - Addressing, WSDL and WS - Policy to allow retrieval of metadata
registration of most second - level ws domains, org. ws gov. ws and edu. ws registration is restricted. Prior to March 14, 2008, ws domains were not allowed to
associated with WS - Security: WS - Federation, WS - Privacy, WS - Test. The following approved specifications are associated with WS - Security: WS - Policy WS - SecureConversation