1 tony 1.1 // ===================================================================
2 // Title: User-Security Security Services 2.8
3 // Filename: User28_SecurityServices.mof
4 // Version: 2.8
5 // Status: Preliminary
6 // Date: 05/29/2003
7 // ===================================================================
8 // Copyright 2000-2003 Distributed Management Task Force, Inc. (DMTF).
9 // All rights reserved.
10 // DMTF is a not-for-profit association of industry members dedicated
11 // to promoting enterprise and systems management and interoperability.
12 // DMTF specifications and documents may be reproduced for uses
13 // consistent with this purpose by members and non-members,
14 // provided that correct attribution is given.
15 // As DMTF specifications may be revised from time to time,
16 // the particular version and release date should always be noted.
17 //
18 // Implementation of certain elements of this standard or proposed
19 // standard may be subject to third party patent rights, including
20 // provisional patent rights (herein "patent rights"). DMTF makes
21 // no representations to users of the standard as to the existence
22 tony 1.1 // of such rights, and is not responsible to recognize, disclose, or
23 // identify any or all such third party patent right, owners or
24 // claimants, nor for any incomplete or inaccurate identification or
25 // disclosure of such rights, owners or claimants. DMTF shall have no
26 // liability to any party, in any manner or circumstance, under any
27 // legal theory whatsoever, for failure to recognize, disclose, or
28 // identify any such third party patent rights, or for such party's
29 // reliance on the standard or incorporation thereof in its product,
30 // protocols or testing procedures. DMTF shall have no liability to
31 // any party implementing such standard, whether such implementation
32 // is foreseeable or not, nor to any patent owner or claimant, and shall
33 // have no liability or responsibility for costs or losses incurred if
34 // a standard is withdrawn or modified after publication, and shall be
35 // indemnified and held harmless by any party implementing the
36 // standard from any and all claims of infringement by a patent owner
37 // for such implementations.
38 //
39 // For information about patents held by third-parties which have
40 // notified the DMTF that, in their opinion, such patent may relate to
41 // or impact implementations of DMTF standards, visit
42 // http://www.dmtf.org/about/policies/disclosures.php.
43 tony 1.1 // ===================================================================
44 // Description: The User Model extends the management concepts that
45 // are related to users and security.
46 // This file defines the generic concepts of various
47 // authentication and authorization security services.
48 //
49 // The object classes below are listed in an order that
50 // avoids forward references. Required objects, defined
51 // by other working groups, are omitted.
52 // ===================================================================
53 // Change Log for v2.8 Preliminary:
54 // CR1013: Update the descriptions for AuthenticationService and
55 // AuthorizationService
56 //
57 // Change Log for v2.7
58 // CR965 - Update the Description for SecurityServiceForSystem
59 // ===================================================================
60
61 #pragma Locale ("en_US")
62
63
64 tony 1.1 // ==================================================================
65 // SecurityService
66 // ==================================================================
67 [Abstract, Version ("2.6.0"), Description (
68 "A service providing security functionaity.") ]
69 class CIM_SecurityService : CIM_Service {
70 };
71
72
73 // ===================================================================
74 // ServiceUsesSecurityService
75 // ===================================================================
76 [Association, Version ("2.6.0"), Description (
77 "This relationship associates a Service with the Security "
78 "Services that it uses.") ]
79 class CIM_ServiceUsesSecurityService : CIM_ServiceServiceDependency {
80
81 [Override ("Antecedent") ]
82 CIM_SecurityService REF Antecedent;
83
84 [Override ("Dependent") ]
85 tony 1.1 CIM_Service REF Dependent;
86 };
87
88
89 // ===================================================================
90 // SecurityServiceForSystem
91 // ===================================================================
92 [Association, Version ("2.6.0"), Description (
93 "The CIM_SecurityServiceForSystem provides the association "
94 "between a System and a SecurityService that provides services "
95 "for that system. Examining the SecurityServiceForSystem class "
96 "definition, note that its superclass ProvidesServiceToElement "
97 "is deprecated. Unfortunately, ProvidesServiceToElement cannot "
98 "be removed from the object hierarchy without a major Schema "
99 "release. When/if this occurs, the ProvidesServiceToElement "
100 "superclass will be removed, and SecurityServiceForSystem will "
101 "subclass from CIM_Dependency directly.") ]
102 class CIM_SecurityServiceForSystem : CIM_ProvidesServiceToElement {
103
104 [Override ("Antecedent"), Description (
105 "The SecurityService that provides services for the system.") ]
106 tony 1.1 CIM_SecurityService REF Antecedent;
107
108 [Override ("Dependent"), Description (
109 "The system that is dependent on the security service.") ]
110 CIM_System REF Dependent;
111 };
112
113
114 // ==================================================================
115 // AuthenticationService
116 // ==================================================================
117 [Version ("2.7.1000"), Description (
118 "CIM_AuthenticationService verifies users' identities through "
119 "some means. These services are decomposed into a subclass "
120 "that provides credentials to users and a subclass that "
121 "provides for the verification of the validity of a credential "
122 "and, perhaps, the appropriateness of its use for access to "
123 "target resources. The persistent state information used from "
124 "one such verification to another is maintained in an instance "
125 "of Identity class.") ]
126 class CIM_AuthenticationService : CIM_SecurityService {
127 tony 1.1 };
128
129
130 // ==================================================================
131 // VerificationService
132 // ==================================================================
133 [Version ("2.6.0"), Description (
134 "CIM_VerificationService is the authentication service that "
135 "verifies a credential for use and may also verify the "
136 "appropriateness of a particular credential in conjunction with "
137 "a particular target resource.") ]
138 class CIM_VerificationService : CIM_AuthenticationService {
139 };
140
141
142 // ==================================================================
143 // CredentialManagementService
144 // ==================================================================
145 [Version ("2.6.0"), Description (
146 "CIM_CredentialManagementService issues credentials and manages "
147 "the credential lifecycle.") ]
148 tony 1.1 class CIM_CredentialManagementService : CIM_AuthenticationService {
149 };
150
151
152 // ==================================================================
153 // TrustHierarchy
154 // ==================================================================
155 [Association, Version ("2.6.0"), Description (
156 "CIM_TrustHierarchy is an association between two "
157 "CredentialManagementService instances that establishes the "
158 "trust hierarchy between them.") ]
159 class CIM_TrustHierarchy : CIM_Dependency {
160
161 [Override ("Antecedent"), Max (1), Description (
162 "The superior CredentialManagementService from which the "
163 "dependent service gets its authority.") ]
164 CIM_CredentialManagementService REF Antecedent;
165
166 [Override ("Dependent"), Description (
167 "The subordinate CredentialManagementService.") ]
168 CIM_CredentialManagementService REF Dependent;
169 tony 1.1 };
170
171
172 // ==================================================================
173 // CredentialManagementSAP
174 // ==================================================================
175 [Version ("2.6.0"), Description (
176 "CIM_CredentialManagementSAP represents the ability to utilize "
177 "or invoke a CredentialManagementService.") ]
178 class CIM_CredentialManagementSAP : CIM_ServiceAccessPoint {
179
180 [Description (
181 "The URL for the access point.") ]
182 string URL;
183 };
184
185
186 // ==================================================================
187 // LocalCredentialManagementService
188 // ==================================================================
189 [Version ("2.6.0"), Description (
190 tony 1.1 "CIM_LocalCredentialManagementService is a credential "
191 "management service that provides management of credentials "
192 "used by the local system.") ]
193 class CIM_LocalCredentialManagementService : CIM_CredentialManagementService {
194 };
195
196
197 // ==================================================================
198 // AuthorizationService
199 // ==================================================================
200 [Version ("2.7.1000"), Description (
201 "CIM_AuthorizationService determines whether an Identity, "
202 "established by an AuthorizationService, is permitted access to "
203 "a resource or set of resources.") ]
204 class CIM_AuthorizationService : CIM_SecurityService {
205 };
206
207
208 // ===================================================================
209 // end of file
210 // ===================================================================
|