Issue 2928: The RequiredRights are confusing (sec-rev) Source: Syracuse University (Dr. Polar Humenn, polar(at)adiron.com) Nature: Uncategorized Issue Severity: Summary: The RequiredRights are confusing. (Issue raised within the RTF itself). The Rights combinators SecAllRights and SecAnyRights are underspecified. The notes on the implemenations of Required Rights are confusing. Resolution: Revised Text: Action: Close issue 2928 Rights Combinators Any and All are underspecified and Required Rights are confusing. ++Replace paragraph 700 with: The value returned for a particular operation in a RequiredRights object is a list of rights and a Rights Combinator. The Rights Combinator specifies the interpretation of multiple rights in conjunction with a list of granted rights. This specification specifies two Rights Combinators, SecAllRights and SecAnyRights. Each combinator defines a predicate on a list of required rights and a list of granted rights. Given a list of granted rights, G, and a list of required rights, R, the definition of the SecAllRights combinator forms the following predicate: V r . r in R => r in G The definition of the SecAnyRights combinator forms the following predicate: E r . r in R & r in G These definitions have important ramifications when an empty list of required rights is specified with each combinator. Regardless of the granted rights, if the required rights, R, is empty then the predicate formed with the SecAllRights combinator results in true, and the predicate formed with the SecAnyRights combinator results in false. ++ Replace the parameter definition for interface_name in paragraph 702: interface_name The CORBA RepositoryId of the interface implemented by the object, which is used as a default only if the ORB cannot determine the name of the most derived interface implemented by the object in the obj parameter. ++ Replace paragraph [704] set_required_rights This operation updates the rights required to execute the operation specified by the operation_name of the interface specified by interface_name. The caller must provide a list of rights and a combinator describing the interpretation of multiple rights. Actions taken: October 4, 1999: received issue March 10, 2000: closed issue Discussion: End of Annotations:===== X-Authentication-Warning: marcy.adiron.com: polar owned process doing -bs Date: Mon, 4 Oct 1999 19:11:08 -0400 (EDT) From: Polar Humenn To: issues@omg.org Subject: Security, RequiredRights Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-UIDL: e]~e9RK1e9n!*e9PU1e9 Security: The RequiredRights are confusing. (Issue raised within the RTF itself). The Rights combinators SecAllRights and SecAnyRights are underspecified. The notes on the implemenations of Required Rights are confusing. ------------------------------------------------------------------- Polar Humenn Adiron, LLC Principal 2-212 Center for Science & Technology mailto:polar@adiron.com CASE Center/Syracuse University Phone: 315-443-3171 Syracuse, NY 13244-4100 Fax: 315-443-4745 http://www.adiron.com