1 a.dunfey 1.1 // ===================================================================
2 // Title: User-Security Security Services
3 // $State: Preliminary $
4 // $Date: 2005/01/05 00:54:01 $
5 // $Source: /home/dmtf2/dotorg/var/cvs/repositories/dev/Schema/MOF/User_SecurityServices.mof,v $
6 // $Revision: 1.4 $
7 // ===================================================================
8 //#pragma inLine ("Includes/copyright.inc")
9 // Copyright 1998-2005 Distributed Management Task Force, Inc. (DMTF).
10 // All rights reserved.
11 // DMTF is a not-for-profit association of industry members dedicated
12 // to promoting enterprise and systems management and interoperability.
13 // DMTF specifications and documents may be reproduced for uses
14 // consistent with this purpose by members and non-members,
15 // provided that correct attribution is given.
16 // As DMTF specifications may be revised from time to time,
17 // the particular version and release date should always be noted.
18 //
19 // Implementation of certain elements of this standard or proposed
20 // standard may be subject to third party patent rights, including
21 // provisional patent rights (herein "patent rights"). DMTF makes
22 a.dunfey 1.1 // no representations to users of the standard as to the existence
23 // of such rights, and is not responsible to recognize, disclose, or
24 // identify any or all such third party patent right, owners or
25 // claimants, nor for any incomplete or inaccurate identification or
26 // disclosure of such rights, owners or claimants. DMTF shall have no
27 // liability to any party, in any manner or circumstance, under any
28 // legal theory whatsoever, for failure to recognize, disclose, or
29 // identify any such third party patent rights, or for such party's
30 // reliance on the standard or incorporation thereof in its product,
31 // protocols or testing procedures. DMTF shall have no liability to
32 // any party implementing such standard, whether such implementation
33 // is foreseeable or not, nor to any patent owner or claimant, and shall
34 // have no liability or responsibility for costs or losses incurred if
35 // a standard is withdrawn or modified after publication, and shall be
36 // indemnified and held harmless by any party implementing the
37 // standard from any and all claims of infringement by a patent owner
38 // for such implementations.
39 //
40 // For information about patents held by third-parties which have
41 // notified the DMTF that, in their opinion, such patent may relate to
42 // or impact implementations of DMTF standards, visit
43 a.dunfey 1.1 // http://www.dmtf.org/about/policies/disclosures.php.
44 //#pragma inLine
45 // ===================================================================
46 // Description: The User Model extends the management concepts that
47 // are related to users and security.
48 // This file defines the generic concepts of various
49 // authentication and authorization security services.
50 //
51 // The object classes below are listed in an order that
52 // avoids forward references. Required objects, defined
53 // by other working groups, are omitted.
54 // ===================================================================
55 // Change Log for v2.9 Company Review:
56 // CR1503 - Deprecate AccountIdentity, SecurityServiceForSystem,
57 // ManagesAccountOnSystem, and ServiceUsesSecurityService
58 //
59 // Change Log for v2.8 Final:
60 // CR1235 - Accepted all Description changes in V2.8 Preliminary
61 //
62 // Change Log for v2.8 Preliminary:
63 // CR1013: Updated the Descriptions for AuthenticationService and
64 a.dunfey 1.1 // AuthorizationService
65 //
66 // Change Log for v2.7
67 // CR965 - Updated the Description for SecurityServiceForSystem
68 // ===================================================================
69
70 #pragma Locale ("en_US")
71
72
73 // ==================================================================
74 // SecurityService
75 // ==================================================================
76 [Abstract, Version ( "2.6.0" ), Description (
77 "A service providing security functionaity.")]
78 class CIM_SecurityService : CIM_Service {
79 };
80
81
82 // ===================================================================
83 // ServiceUsesSecurityService
84 // ===================================================================
85 a.dunfey 1.1 [Association, Deprecated { "CIM_ServiceServiceDependency" },
86 Version ( "2.8.1000" ), Description (
87 "This relationship associates a Service with the Security "
88 "Services that it uses. This association does not add any "
89 "constraints or semantics to ServiceServiceDependency. As a "
90 "result, it is deprecated.")]
91 class CIM_ServiceUsesSecurityService : CIM_ServiceServiceDependency {
92
93 [Deprecated { "CIM_ServiceServiceDependency.Antecedent" },
94 Override ( "Antecedent" )]
95 CIM_SecurityService REF Antecedent;
96
97 [Deprecated { "CIM_ServiceServiceDependency.Dependent" },
98 Override ( "Dependent" )]
99 CIM_Service REF Dependent;
100 };
101
102
103
104 // ===================================================================
105 // SecurityServiceForSystem
106 a.dunfey 1.1 // ===================================================================
107 [Association, Deprecated { "CIM_ServiceAvailableToElement" },
108 Version ( "2.8.1000" ), Description (
109 "The CIM_SecurityServiceForSystem provides the association "
110 "between a System and a SecurityService that provides services "
111 "for that system. This association does not add any constraints "
112 "or semantics to ServiceAvailableToElement. As a result, it is "
113 "deprecated.")]
114 class CIM_SecurityServiceForSystem : CIM_ProvidesServiceToElement {
115
116 [Deprecated { "CIM_ServiceAvailableToElement.ServiceProvided" },
117 Override ( "Antecedent" ), Description (
118 "The SecurityService that provides services for the system.")]
119 CIM_SecurityService REF Antecedent;
120
121 [Deprecated { "CIM_ServiceAvailableToElement.UserOfService" },
122 Override ( "Dependent" ), Description (
123 "The system that is dependent on the security service.")]
124 CIM_System REF Dependent;
125 };
126
127 a.dunfey 1.1
128 // ==================================================================
129 // AuthenticationService
130 // ==================================================================
131 [Version ( "2.8.0" ), Description (
132 "CIM_AuthenticationService verifies users' identities through "
133 "some means. These services are decomposed into a subclass that "
134 "provides credentials to users and a subclass that provides for "
135 "the verification of the validity of a credential and, perhaps, "
136 "the appropriateness of its use for access to target resources. "
137 "The persistent state information used from one such "
138 "verification to another is maintained in an instance of "
139 "Identity class.")]
140 class CIM_AuthenticationService : CIM_SecurityService {
141 };
142
143
144 // ==================================================================
145 // VerificationService
146 // ==================================================================
147 [Version ( "2.6.0" ), Description (
148 a.dunfey 1.1 "CIM_VerificationService is the authentication service that "
149 "verifies a credential for use and may also verify the "
150 "appropriateness of a particular credential in conjunction with "
151 "a particular target resource.")]
152 class CIM_VerificationService : CIM_AuthenticationService {
153 };
154
155
156 // ==================================================================
157 // CredentialManagementService
158 // ==================================================================
159 [Version ( "2.6.0" ), Description (
160 "CIM_CredentialManagementService issues credentials and manages "
161 "the credential lifecycle.")]
162 class CIM_CredentialManagementService : CIM_AuthenticationService {
163 };
164
165
166 // ==================================================================
167 // TrustHierarchy
168 // ==================================================================
169 a.dunfey 1.1 [Association, Version ( "2.6.0" ), Description (
170 "CIM_TrustHierarchy is an association between two "
171 "CredentialManagementService instances that establishes the "
172 "trust hierarchy between them.")]
173 class CIM_TrustHierarchy : CIM_Dependency {
174
175 [Override ( "Antecedent" ), Max ( 1 ), Description (
176 "The superior CredentialManagementService from which the "
177 "dependent service gets its authority.")]
178 CIM_CredentialManagementService REF Antecedent;
179
180 [Override ( "Dependent" ), Description (
181 "The subordinate CredentialManagementService.")]
182 CIM_CredentialManagementService REF Dependent;
183 };
184
185
186 // ==================================================================
187 // CredentialManagementSAP
188 // ==================================================================
189 [Version ( "2.6.0" ), Description (
190 a.dunfey 1.1 "CIM_CredentialManagementSAP represents the ability to utilize "
191 "or invoke a CredentialManagementService.")]
192 class CIM_CredentialManagementSAP : CIM_ServiceAccessPoint {
193
194 [Description (
195 "The URL for the access point.")]
196 string URL;
197 };
198
199
200 // ==================================================================
201 // LocalCredentialManagementService
202 // ==================================================================
203 [Version ( "2.6.0" ), Description (
204 "CIM_LocalCredentialManagementService is a credential "
205 "management service that provides management of credentials "
206 "used by the local system.")]
207 class CIM_LocalCredentialManagementService : CIM_CredentialManagementService {
208 };
209
210
211 a.dunfey 1.1 // ==================================================================
212 // AuthorizationService
213 // ==================================================================
214 [Version ( "2.8.0" ), Description (
215 "CIM_AuthorizationService determines whether an Identity, "
216 "established by an AuthorizationService, is permitted access to "
217 "a resource or set of resources.")]
218 class CIM_AuthorizationService : CIM_SecurityService {
219 };
220
221
222 // ===================================================================
223 // end of file
224 // ===================================================================
|