1 a.dunfey 1.1 // ===================================================================
2 // Title: User-Security General Credentials
3 // $State: Preliminary $
4 // $Date: 2005/01/05 00:54:01 $
5 // $Source: /home/dmtf2/dotorg/var/cvs/repositories/dev/Schema/MOF/User_Credential.mof,v $
6 // $Revision: 1.5 $
7 // ===================================================================
8 //#pragma inLine ("Includes/copyright.inc")
9 // Copyright 1998-2005 Distributed Management Task Force, Inc. (DMTF).
10 // All rights reserved.
11 // DMTF is a not-for-profit association of industry members dedicated
12 // to promoting enterprise and systems management and interoperability.
13 // DMTF specifications and documents may be reproduced for uses
14 // consistent with this purpose by members and non-members,
15 // provided that correct attribution is given.
16 // As DMTF specifications may be revised from time to time,
17 // the particular version and release date should always be noted.
18 //
19 // Implementation of certain elements of this standard or proposed
20 // standard may be subject to third party patent rights, including
21 // provisional patent rights (herein "patent rights"). DMTF makes
22 a.dunfey 1.1 // no representations to users of the standard as to the existence
23 // of such rights, and is not responsible to recognize, disclose, or
24 // identify any or all such third party patent right, owners or
25 // claimants, nor for any incomplete or inaccurate identification or
26 // disclosure of such rights, owners or claimants. DMTF shall have no
27 // liability to any party, in any manner or circumstance, under any
28 // legal theory whatsoever, for failure to recognize, disclose, or
29 // identify any such third party patent rights, or for such party's
30 // reliance on the standard or incorporation thereof in its product,
31 // protocols or testing procedures. DMTF shall have no liability to
32 // any party implementing such standard, whether such implementation
33 // is foreseeable or not, nor to any patent owner or claimant, and shall
34 // have no liability or responsibility for costs or losses incurred if
35 // a standard is withdrawn or modified after publication, and shall be
36 // indemnified and held harmless by any party implementing the
37 // standard from any and all claims of infringement by a patent owner
38 // for such implementations.
39 //
40 // For information about patents held by third-parties which have
41 // notified the DMTF that, in their opinion, such patent may relate to
42 // or impact implementations of DMTF standards, visit
43 a.dunfey 1.1 // http://www.dmtf.org/about/policies/disclosures.php.
44 //#pragma inLine
45 // ===================================================================
46 // Description: The User Model extends the management concepts that
47 // are related to users and security.
48 // This file defines the generic concepts of a
49 // credential.
50 //
51 // The object classes below are listed in an order that
52 // avoids forward references. Required objects, defined
53 // by other working groups, are omitted.
54 // ===================================================================
55 // Change Log for v2.9 Company Review
56 // CR1514 - Fix description of timestamp in Credential
57 // Change Log for v2.9 Preliminary
58 // CR1379 - Redefine CredentialContext association
59 // CR1222 - Define a CredentialContext association
60 // Change Log for v2.8 Final
61 // CR1218 - Accepted all changes for CIM V2.8 Prelim, except removed
62 // BiometricCredential from the Final release and into
63 // CIM V2.9 Preliminary.
64 a.dunfey 1.1 //
65 // Change Log for v2.8 Preliminary
66 // CR1011 - Added BiometricCredential, updated Credential.Description.
67 // CR1014 - Removed Min (1) from ManagedCredential.Antecedent
68 //
69 // Change Log for v2.7
70 // CR784 - Promoted 2 properties, Issued and Expired, from
71 // CIM_KerberosTicket to CIM_Credential
72 // CR980 - Removed Experimental qualifier from 2 properties in
73 // Credential
74 // ===================================================================
75
76 #pragma Locale ("en_US")
77
78
79 // ==================================================================
80 // Credential
81 // ==================================================================
82 [Abstract, Version ( "2.8.0" ), Description (
83 "Subclasses of CIM_Credential define materials, information or "
84 "other data which are used to establish identity. Generally, "
85 a.dunfey 1.1 "there may be some shared information, or credential material "
86 "which is used to identify and authenticate an entity in the "
87 "process of gaining access to, or permission to use, resources. "
88 "Such credential material may be used to authenticate an "
89 "entity's identity initially, as done by a "
90 "CIM_AuthenticationService, and additionally on an ongoing "
91 "basis (for example, during the course of a connection or other "
92 "security association), as proof that each received message or "
93 "communication came from a valid 'user' of that credential "
94 "material.")]
95 class CIM_Credential : CIM_ManagedElement {
96
97 [Description (
98 "The date and time when the credential was issued. Use a "
99 "value of all 0's '00000000000000.000000+000' if this "
100 "information is not applicable.")]
101 datetime Issued;
102
103 [Description (
104 "The date and time when the credential expires (and is not "
105 "appropriate for use for authentication/ authorization). Use "
106 a.dunfey 1.1 "a value of all 9s '99999999999999.999999+999' if this "
107 "information is not applicable. Note that this property does "
108 "not define how the expiration is set - but that there IS an "
109 "expiration. The property may be set to either a specific "
110 "date/time or an interval (calculated from the Issued "
111 "datetime). For example, for Certificate Authority-signed "
112 "public key, the expiration is determined by the CA. Another "
113 "example is a voice mail password that expires 60 days after "
114 "it is set/issued.")]
115 datetime Expires;
116 };
117
118
119 // ===================================================================
120 // ManagedCredential
121 // ===================================================================
122 [Association, Version ( "2.8.0" ), Description (
123 "This relationship associates a CredentialManagementService "
124 "with the Credential it manages.")]
125 class CIM_ManagedCredential : CIM_Dependency {
126
127 a.dunfey 1.1 [Override ( "Antecedent" ), Max ( 1 ), Description (
128 "The credential management service.")]
129 CIM_CredentialManagementService REF Antecedent;
130
131 [Override ( "Dependent" ), Description (
132 "The managed credential.")]
133 CIM_Credential REF Dependent;
134 };
135
136 // ===================================================================
137 // CredentialContext
138 // ===================================================================
139 [Association, Experimental, Version ( "2.8.1000" ), Description (
140 "This relationship defines a context (e.g., a System or "
141 "Service) of a Credential. One example is a shared secret/ "
142 "password which is defined within the context of an application "
143 "(or Service). Note that the cardinalities of this association "
144 "are many to many, indicating that the Credential MAY be scoped "
145 "by several elements. However, it is likely that there will "
146 "only be a single scope, if one exists at all.")]
147 class CIM_CredentialContext {
148 a.dunfey 1.1
149 [Key, Description (
150 "A Credential whose context is defined.")]
151 CIM_Credential REF ElementInContext;
152
153 [Key, Description (
154 "The ManagedElement that provides context or scope for the "
155 "Credential.")]
156 CIM_ManagedElement REF ElementProvidingContext;
157 };
158
159 // ===================================================================
160 // end of file
161 // ===================================================================
162
|