[Zope3-dev] Security Target cleanup
Jim Fulton
jim at zope.com
Wed Jun 2 15:51:36 EDT 2004
Christian Theune wrote:
> Hi (Jim, Steve),
>
> i'm currently continuing to review the Security Target document we worked on
> and stumbled about some inconsistency about roles.
>
> IMHO we agreed to not do Roles at all in the certified version, to stay with a
> simpler and cleaner security model.
Right, we decided not to have *zope* roles. These are not to be confused
with the similar, but different, CC notion of roles.
> Now there is the section:
>
> <snip>
> FMT_SMR.1 Security roles
> ~~~~~~~~~~~~~~~~~~~~~~~~
>
> FMT_SMR.1.1
> The TSF shall maintain *[
>
> authorized administrator
> Users who can perform system-wide security functions. These are
> people who have the zope.ManageSecurity permission.
>
> Grantor
> Users who have the ability to grant or deny permissions to
> users for objects. These are users who have any of the grant
> meta-permissions.
>
> users authorized to modify their own authentication data
> The role name says it all.
>
> ]*.
>
> FMT_SMR.1.2
> The TSF shall be able to associate *[principals]* with roles.
> </snip>
>
> I think about dropping this section as it states the opposite of "having no
> roles".
>
> Comments?
These are CC roles, not zope roles. I have the impression that CC roles are
required. I think that there are other requirements that depend on them.
Jim
--
Jim Fulton mailto:jim at zope.com Python Powered!
CTO (540) 361-1714 http://www.python.org
Zope Corporation http://www.zope.com http://www.zope.org
More information about the Zope3-dev
mailing list