1 kumpf 1.2 // ===================================================================
2 // Title: User-Security Security Services 2.7
3 // Filename: User27_SecurityServices.mof
4 // Version: 2.7.0
5 // Status: Final
6 // Date: 03/31/2003
7 // ===================================================================
8 // Copyright 2000-2003 Distributed Management Task Force, Inc. (DMTF).
9 // All rights reserved.
10 // DMTF is a not-for-profit association of industry members dedicated
11 // to promoting enterprise and systems management and interoperability.
12 // DMTF specifications and documents may be reproduced for uses
13 // consistent with this purpose by members and non-members,
14 // provided that correct attribution is given.
15 // As DMTF specifications may be revised from time to time,
16 // the particular version and release date should always be noted.
17 //
18 // Implementation of certain elements of this standard or proposed
19 // standard may be subject to third party patent rights, including
20 // provisional patent rights (herein "patent rights"). DMTF makes
21 // no representations to users of the standard as to the existence
22 kumpf 1.2 // of such rights, and is not responsible to recognize, disclose, or
23 // identify any or all such third party patent right, owners or
24 // claimants, nor for any incomplete or inaccurate identification or
25 // disclosure of such rights, owners or claimants. DMTF shall have no
26 // liability to any party, in any manner or circumstance, under any
27 // legal theory whatsoever, for failure to recognize, disclose, or
28 // identify any such third party patent rights, or for such party's
29 // reliance on the standard or incorporation thereof in its product,
30 // protocols or testing procedures. DMTF shall have no liability to
31 // any party implementing such standard, whether such implementation
32 // is foreseeable or not, nor to any patent owner or claimant, and shall
33 // have no liability or responsibility for costs or losses incurred if
34 // a standard is withdrawn or modified after publication, and shall be
35 // indemnified and held harmless by any party implementing the
36 // standard from any and all claims of infringement by a patent owner
37 // for such implementations.
38 //
39 // For information about patents held by third-parties which have
40 // notified the DMTF that, in their opinion, such patent may relate to
41 // or impact implementations of DMTF standards, visit
42 // http://www.dmtf.org/about/policies/disclosures.php.
43 kumpf 1.2 // ===================================================================
44 // Description: The User Model extends the management concepts that
45 // are related to users and security.
46 // This file defines the generic concepts of various
47 // authentication and authorization security services.
48 //
49 // The object classes below are listed in an order that
50 // avoids forward references. Required objects, defined
51 // by other working groups, are omitted.
52 // ===================================================================
53 // Change Log for v2.7
54 // CR965 - Update the Description for SecurityServiceForSystem
55 // ===================================================================
56
57 #pragma Locale ("en_US")
58
59
60 // ==================================================================
61 // SecurityService
62 // ==================================================================
63 [Abstract, Version ("2.6.0"), Description (
64 kumpf 1.2 "A service providing security functionaity.") ]
65 class CIM_SecurityService : CIM_Service {
66 };
67
68
69 // ===================================================================
70 // ServiceUsesSecurityService
71 // ===================================================================
72 [Association, Version ("2.6.0"), Description (
73 "This relationship associates a Service with the Security"
74 "Services that it uses.") ]
75 class CIM_ServiceUsesSecurityService : CIM_ServiceServiceDependency {
76
77 [Override ("Antecedent") ]
78 CIM_SecurityService REF Antecedent;
79
80 [Override ("Dependent") ]
81 CIM_Service REF Dependent;
82 };
83
84
85 kumpf 1.2 // ===================================================================
86 // SecurityServiceForSystem
87 // ===================================================================
88 [Association, Version ("2.6.0"), Description (
89 "The CIM_SecurityServiceForSystem provides the association between "
90 "a System and a SecurityService that provides services for that "
91 "system. Examining the SecurityServiceForSystem class definition, "
92 "note that its superclass ProvidesServiceToElement is deprecated. "
93 "Unfortunately, ProvidesServiceToElement cannot be removed from "
94 "the object hierarchy without a major Schema release. "
95 "When/if this occurs, the ProvidesServiceToElement superclass "
96 "will be removed, and SecurityServiceForSystem will subclass "
97 "from CIM_Dependency directly. ") ]
98 class CIM_SecurityServiceForSystem : CIM_ProvidesServiceToElement {
99
100 [Override ("Antecedent"), Description (
101 "The SecurityService that provides services for the system.") ]
102 CIM_SecurityService REF Antecedent;
103
104 [Override ("Dependent"), Description (
105 "The system that is dependent on the security service.") ]
106 kumpf 1.2 CIM_System REF Dependent;
107 };
108
109
110 // ==================================================================
111 // AuthenticationService
112 // ==================================================================
113 [Version ("2.6.0"), Description (
114 "CIM_AuthenticationService verifies users' identities through "
115 "some means. These services are decomposed into a subclass that "
116 "provides credentials to users and a subclass that provides for "
117 "the verification of the validity of a credential and, perhaps, "
118 "the appropriateness of its use for access to target resources. "
119 "The persistent state information used from one such verification "
120 "to another is maintained in an Account for that Users Access on "
121 "that AuthenticationService.") ]
122 class CIM_AuthenticationService : CIM_SecurityService {
123 };
124
125
126 // ==================================================================
127 kumpf 1.2 // VerificationService
128 // ==================================================================
129 [Version ("2.6.0"), Description (
130 "CIM_VerificationService is the authentication service that "
131 "verifies a credential for use and may also verify the "
132 "appropriateness of a particular credential in conjunction with a "
133 "particular target resource.") ]
134 class CIM_VerificationService : CIM_AuthenticationService {
135 };
136
137
138 // ==================================================================
139 // CredentialManagementService
140 // ==================================================================
141 [Version ("2.6.0"), Description (
142 "CIM_CredentialManagementService issues credentials and manages "
143 "the credential lifecycle.") ]
144 class CIM_CredentialManagementService : CIM_AuthenticationService {
145 };
146
147
148 kumpf 1.2 // ==================================================================
149 // TrustHierarchy
150 // ==================================================================
151 [Association, Version ("2.6.0"), Description (
152 "CIM_TrustHierarchy is an association between two "
153 "CredentialManagementService instances that establishes "
154 "the trust hierarchy between them.") ]
155 class CIM_TrustHierarchy : CIM_Dependency {
156
157 [Override ("Antecedent"), Max (1),
158 Description (
159 "The superior CredentialManagementService "
160 "from which the dependent service gets its authority.") ]
161 CIM_CredentialManagementService REF Antecedent;
162
163 [Override ("Dependent"), Description (
164 "The subordinate CredentialManagementService.") ]
165 CIM_CredentialManagementService REF Dependent;
166 };
167
168
169 kumpf 1.2 // ==================================================================
170 // CredentialManagementSAP
171 // ==================================================================
172 [Version ("2.6.0"), Description (
173 "CIM_CredentialManagementSAP represents the ability to "
174 "utilize or invoke a CredentialManagementService.") ]
175 class CIM_CredentialManagementSAP : CIM_ServiceAccessPoint {
176
177 [Description ("The URL for the access point.") ]
178 string URL;
179 };
180
181
182 // ==================================================================
183 // LocalCredentialManagementService
184 // ==================================================================
185 [Version ("2.6.0"), Description (
186 "CIM_LocalCredentialManagementService is a credential "
187 "management service that provides management of "
188 "credentials used by the local system.") ]
189 class CIM_LocalCredentialManagementService :
190 kumpf 1.2 CIM_CredentialManagementService {
191 };
192
193
194 // ==================================================================
195 // AuthorizationService
196 // ==================================================================
197 [Version ("2.6.0"), Description (
198 "CIM_AuthorizationService determines whether a user, by "
199 "association with an Account used by the AuthorizationService, is "
200 "permitted access a resource or set of resources.") ]
201 class CIM_AuthorizationService : CIM_SecurityService {
202 };
203
204
205 // ===================================================================
206 // end of file
207 // ===================================================================
|