1 tony 1.1 // ===================================================================
2 // Title: User-Security Security Services 2.8
3 // Filename: User28_SecurityServices.mof
4 // Version: 2.8
5 // Status: Final
6 // Date: Jan 26, 2004
7 // ===================================================================
8 // Copyright 2000-2004 Distributed Management Task Force, Inc. (DMTF).
9 // All rights reserved.
10 // DMTF is a not-for-profit association of industry members dedicated
11 // to promoting enterprise and systems management and interoperability.
12 // DMTF specifications and documents may be reproduced for uses
13 // consistent with this purpose by members and non-members,
14 // provided that correct attribution is given.
15 // As DMTF specifications may be revised from time to time,
16 // the particular version and release date should always be noted.
17 //
18 // Implementation of certain elements of this standard or proposed
19 // standard may be subject to third party patent rights, including
20 // provisional patent rights (herein "patent rights"). DMTF makes
21 // no representations to users of the standard as to the existence
22 tony 1.1 // of such rights, and is not responsible to recognize, disclose, or
23 // identify any or all such third party patent right, owners or
24 // claimants, nor for any incomplete or inaccurate identification or
25 // disclosure of such rights, owners or claimants. DMTF shall have no
26 // liability to any party, in any manner or circumstance, under any
27 // legal theory whatsoever, for failure to recognize, disclose, or
28 // identify any such third party patent rights, or for such party's
29 // reliance on the standard or incorporation thereof in its product,
30 // protocols or testing procedures. DMTF shall have no liability to
31 // any party implementing such standard, whether such implementation
32 // is foreseeable or not, nor to any patent owner or claimant, and shall
33 // have no liability or responsibility for costs or losses incurred if
34 // a standard is withdrawn or modified after publication, and shall be
35 // indemnified and held harmless by any party implementing the
36 // standard from any and all claims of infringement by a patent owner
37 // for such implementations.
38 //
39 // For information about patents held by third-parties which have
40 // notified the DMTF that, in their opinion, such patent may relate to
41 // or impact implementations of DMTF standards, visit
42 // http://www.dmtf.org/about/policies/disclosures.php.
43 tony 1.1 // ===================================================================
44 // Description: The User Model extends the management concepts that
45 // are related to users and security.
46 // This file defines the generic concepts of various
47 // authentication and authorization security services.
48 //
49 // The object classes below are listed in an order that
50 // avoids forward references. Required objects, defined
51 // by other working groups, are omitted.
52 // ===================================================================
53 // Change Log for v2.8 Final:
54 // CR1235 - Accepted all Description changes in V2.8 Preliminary
55 //
56 // Change Log for v2.8 Preliminary:
57 // CR1013: Updated the Descriptions for AuthenticationService and
58 // AuthorizationService
59 //
60 // Change Log for v2.7
61 // CR965 - Updated the Description for SecurityServiceForSystem
62 // ===================================================================
63
64 tony 1.1 #pragma Locale ("en_US")
65
66
67 // ==================================================================
68 // SecurityService
69 // ==================================================================
70 [Abstract, Version ( "2.6.0" ), Description (
71 "A service providing security functionaity.")]
72 class CIM_SecurityService : CIM_Service {
73 };
74
75
76 // ===================================================================
77 // ServiceUsesSecurityService
78 // ===================================================================
79 [Association, Version ( "2.6.0" ), Description (
80 "This relationship associates a Service with the Security "
81 "Services that it uses.")]
82 class CIM_ServiceUsesSecurityService : CIM_ServiceServiceDependency {
83
84 [Override ( "Antecedent" )]
85 tony 1.1 CIM_SecurityService REF Antecedent;
86
87 [Override ( "Dependent" )]
88 CIM_Service REF Dependent;
89 };
90
91
92 // ===================================================================
93 // SecurityServiceForSystem
94 // ===================================================================
95 [Association, Version ( "2.6.0" ), Description (
96 "The CIM_SecurityServiceForSystem provides the association "
97 "between a System and a SecurityService that provides services "
98 "for that system. Examining the SecurityServiceForSystem class "
99 "definition, note that its superclass ProvidesServiceToElement "
100 "is deprecated. Unfortunately, ProvidesServiceToElement cannot "
101 "be removed from the object hierarchy without a major Schema "
102 "release. When/if this occurs, the ProvidesServiceToElement "
103 "superclass will be removed, and SecurityServiceForSystem will "
104 "subclass from CIM_Dependency directly.")]
105 class CIM_SecurityServiceForSystem : CIM_ProvidesServiceToElement {
106 tony 1.1
107 [Override ( "Antecedent" ), Description (
108 "The SecurityService that provides services for the system.")]
109 CIM_SecurityService REF Antecedent;
110
111 [Override ( "Dependent" ), Description (
112 "The system that is dependent on the security service.")]
113 CIM_System REF Dependent;
114 };
115
116
117 // ==================================================================
118 // AuthenticationService
119 // ==================================================================
120 [Version ( "2.8.0" ), Description (
121 "CIM_AuthenticationService verifies users' identities through "
122 "some means. These services are decomposed into a subclass that "
123 "provides credentials to users and a subclass that provides for "
124 "the verification of the validity of a credential and, perhaps, "
125 "the appropriateness of its use for access to target resources. "
126 "The persistent state information used from one such "
127 tony 1.1 "verification to another is maintained in an instance of "
128 "Identity class.")]
129 class CIM_AuthenticationService : CIM_SecurityService {
130 };
131
132
133 // ==================================================================
134 // VerificationService
135 // ==================================================================
136 [Version ( "2.6.0" ), Description (
137 "CIM_VerificationService is the authentication service that "
138 "verifies a credential for use and may also verify the "
139 "appropriateness of a particular credential in conjunction with "
140 "a particular target resource.")]
141 class CIM_VerificationService : CIM_AuthenticationService {
142 };
143
144
145 // ==================================================================
146 // CredentialManagementService
147 // ==================================================================
148 tony 1.1 [Version ( "2.6.0" ), Description (
149 "CIM_CredentialManagementService issues credentials and manages "
150 "the credential lifecycle.")]
151 class CIM_CredentialManagementService : CIM_AuthenticationService {
152 };
153
154
155 // ==================================================================
156 // TrustHierarchy
157 // ==================================================================
158 [Association, Version ( "2.6.0" ), Description (
159 "CIM_TrustHierarchy is an association between two "
160 "CredentialManagementService instances that establishes the "
161 "trust hierarchy between them.")]
162 class CIM_TrustHierarchy : CIM_Dependency {
163
164 [Override ( "Antecedent" ), Max ( 1 ), Description (
165 "The superior CredentialManagementService from which the "
166 "dependent service gets its authority.")]
167 CIM_CredentialManagementService REF Antecedent;
168
169 tony 1.1 [Override ( "Dependent" ), Description (
170 "The subordinate CredentialManagementService.")]
171 CIM_CredentialManagementService REF Dependent;
172 };
173
174
175 // ==================================================================
176 // CredentialManagementSAP
177 // ==================================================================
178 [Version ( "2.6.0" ), Description (
179 "CIM_CredentialManagementSAP represents the ability to utilize "
180 "or invoke a CredentialManagementService.")]
181 class CIM_CredentialManagementSAP : CIM_ServiceAccessPoint {
182
183 [Description (
184 "The URL for the access point.")]
185 string URL;
186 };
187
188
189 // ==================================================================
190 tony 1.1 // LocalCredentialManagementService
191 // ==================================================================
192 [Version ( "2.6.0" ), Description (
193 "CIM_LocalCredentialManagementService is a credential "
194 "management service that provides management of credentials "
195 "used by the local system.")]
196 class CIM_LocalCredentialManagementService : CIM_CredentialManagementService {
197 };
198
199
200 // ==================================================================
201 // AuthorizationService
202 // ==================================================================
203 [Version ( "2.8.0" ), Description (
204 "CIM_AuthorizationService determines whether an Identity, "
205 "established by an AuthorizationService, is permitted access to "
206 "a resource or set of resources.")]
207 class CIM_AuthorizationService : CIM_SecurityService {
208 };
209
210
211 tony 1.1 // ===================================================================
212 // end of file
213 // ===================================================================
|