ACS IUDD convergence 1 2006 Fujitsu ACSSDD Convergence

ACS & IUDD convergence Refactor current IUDD schema to pluggable ACS & IUDD convergence

What is AAF: Application Archive Descriptor (AAD) • AAD is a XML document that

Overlooking AAD 4 © 2006 Fujitsu ACS/SDD Convergence 16 May, 2006

ACS Repository • Works with Application Archive described by its AAD aad. xml •

AAD is simple and minimal • AAD is defined in a concise XML schema

package. Identity and files element in IUDD • package. Identity and files in IUDD

Plan to proceed 1. Find what can be used in AAD in SDD •

Detailed comparison Similarity and difference in ACS and IUDD 9 © 2006 Fujitsu ACS/SDD

Similar elements – unifyable? • /AAD/AAID/{Name, Version} – /iudd/package. Identity/{name, version} • /AAD/Author/{Name, Description},

Similar AAD elements - Package identification (1) <aaf: AAID> <aaf: Name>http: //www. foo. ggf.

Similar AAD elements - Package identification (2) • Package identification (Similar to IUDD) <aaf:

Unique elements AAD – useful in SDD • /AAD/Access. Constraint • /AAD/Contents/Content/ds: Digest. Method

Unique elements in AAD – Access. Constraint and Digital Signature <aaf: Access. Constraint dialect="urn:

IUDD specific attribute & group – SDD specific • /iudd/package. Identity {@software. ID, @build.

Q&A, Discussion 16 © 2006 Fujitsu ACS/SDD Convergence 16 May, 2006

Slides: 16

Download presentation

ACS & IUDD convergence Refactor current IUDD schema to pluggable ACS & IUDD convergence IUDD’ package. Identity and files AAD Topology Deployment Graph Requirements JSDL Component Document IU IUDD V 2 spec 2 © 2006 Fujitsu ACS/CDDLM/JSDL ACS/SDD Convergence 16 May, 2006

What is AAF: Application Archive Descriptor (AAD) • AAD is a XML document that • Describes what it is (Package Identity): • Name, Version, Author (Name, Description, Location) • Maps roughly to package. Identity element in IUDD V 2 • Describes what is in it (List of contents): • Content with pathname and (optional) digital signature • Maps roughly to files element in IUDD V 2 • With repeatable elements for human readable text with “lang” attribute • With optional Access. Constraint element intended use with the established WS standard XACML 3 © 2006 Fujitsu ACS/SDD Convergence 16 May, 2006

AAD is simple and minimal • AAD is defined in a concise XML schema (AAD. xsd) : • Has only 130 lines in XML schema and is self-contained Very low entry barrier for variety of systems • With the imports from the established XML standards: • http: //www. w 3. org/2001/xml. xsd • http: //www. w 3. org/TR/xmldsig-core-schema. xsd • AAD has some extension points in schema Extensible for more sophisticated management 6 © 2006 Fujitsu ACS/SDD Convergence 16 May, 2006

package. Identity and files element in IUDD • package. Identity and files in IUDD (pkg. xsd) • Imports seven different schema that depends on: • • base. xsd (525 lines) pkg. Types. xsd (26 lines) requirement. xsd (506 lines) resources. xsd (439 lines) feature. xsd (279 lines) identity. xsd (163 lines) version. xsd (28 lines) • Contain 400 lines by itself in XML schema (pkg. xsd) • 2366 lines in sum of the above • Including annotations 7 © 2006 Fujitsu ACS/SDD Convergence 16 May, 2006

Plan to proceed 1. Find what can be used in AAD in SDD • In terms of Package Identity, Access. Constraint, and List of contents including digital signature • Needs detailed research to verify the presented mapping is OK. 2. Find IUDD V 2 elements that are not covered by AAD 1. AAD can be extended in SDD schema. • There are extension points for Author, Access. Constraint, Content and AAD 8 © 2006 Fujitsu ACS/SDD Convergence 16 May, 2006

Similar elements – unifyable? • /AAD/AAID/{Name, Version} – /iudd/package. Identity/{name, version} • /AAD/Author/{Name, Description}, /AAD/Author/Location/{Country, Address} – /iudd/package. Identity/manufacturer • /AAD/Contents/Content – /iudd/files/ 10 © 2006 Fujitsu ACS/SDD Convergence 16 May, 2006

Similar AAD elements - Package identification (1) <aaf: AAID> <aaf: Name>http: //www. foo. ggf. org/sample-webapp</aaf: Name> <aaf: Version>1. 0. 0</aaf: Version> </aaf: AAID> <aaf: Author> <aaf: Name>Foo Software Inc. </aaf: Name> <aaf: Description xml: lang="en"> home page is http: //www. foo. org/ </aaf: Description> <aaf: Location><aaf: Country>United States</aaf: Country></aaf: Location> </aaf: Author> <aaf: Descriptions> <aaf: Description>sample web app</aaf: Description> </aaf: Descriptions> 11 © 2006 Fujitsu ACS/SDD Convergence 16 May, 2006

Similar AAD elements - Package identification (2) • Package identification (Similar to IUDD) <aaf: Contents> <aaf: Content type="aaf: Deployment. Descriptor"> <aaf: Pathname>cdl/full-example-3 -acs. xml</aaf: Pathname> <ds: Digest. Method algorithm= "http: //www. w 3. org/2000/09/xmldsig#sha 1"/> <ds: Digest. Value>MTIz. NDU 2 Nzg. . . </ds: Digest. Value> </aaf: Content> … </aaf: Contents> 12 © 2006 Fujitsu ACS/SDD Convergence 16 May, 2006

Unique elements in AAD – Access. Constraint and Digital Signature <aaf: Access. Constraint dialect="urn: oasis: names: tc: xacml: 1. 0: policy"> <xacml: Policy xmlns: xacml="urn: oasis: names: tc: xacml: 1. 0: policy">. . . </xacml: Policy> </aaf: Access. Constraint> <aaf: Contents> <aaf: Content type="aaf: Deployment. Descriptor"> <aaf: Pathname>cdl/full-example-3 -acs. xml</aaf: Pathname> <ds: Digest. Method algorithm= "http: //www. w 3. org/2000/09/xmldsig#sha 1"/> <ds: Digest. Value>MTIz. NDU 2 Nzg. . . </ds: Digest. Value> </aaf: Content> … </aaf: Contents> 14 © 2006 Fujitsu ACS/SDD Convergence 16 May, 2006

IUDD specific attribute & group – SDD specific • /iudd/package. Identity {@software. ID, @build. Date, @build. ID, @build. Origin, @package. Type, @content. Type} • IUcontent. List group in /iu: Composite. IU Type 15 © 2006 Fujitsu ACS/SDD Convergence 16 May, 2006