ISO-ISP-15125-4-1998.pdf

B C Reference number ISO/IEC ISP 15125-4:1998(E) INTERNATIONAL STANDARDIZED PROFILE ISO/IEC ISP 15125-4 First edition 1998-11-01 Information technology International Standardized Profiles ADYnn OSI Directory Part 4: ADY22 DSA support of Distributed Operations Technologies de linformation Profils normalisés internationaux ADYnn Annuaire OSI Partie 4: ADY22 Support DSA d'opérations distribuées Copyright International Organization for Standardization Provided by IHS under license with ISO Licensee=Rock Island Arsenal/9983967100, User=Schabilion, Shelley Not for Resale, 04/10/2007 06:18:39 MDTNo reproduction or networking permitted without license from IHS -,-,- ISO/IEC ISP 15125-4:1998(E) © ISO/IEC 1998 All rights reserved. Unless otherwise specified, no part of this publication may be reproduced or utilized in any form or by any means, electronic or mechanical, including photocopying and micro- film, without permission in writing from the publisher. ISO/IEC Copyright Office Case postale 56 CH-1211 Genève 20 Switzerland Printed in Switzerland ii Contents 1 Scope1 1.1 General1 1.2 Position Within the Taxonomy1 1.3 Scenario1 2 Normative references2 2.1 Paired ITU-T Recommendations | International Standards equivalent in technical content2 2.2 Normative Amendments and Technical Corrigenda3 2.3 Additional normative references4 3 Definitions4 3.1 General4 3.2 Support Level7 4 Abbreviations7 5 Conformance - DSP9 5.1 Conformance Statement9 5.2 Static Conformance Requirements9 5.3 Dynamic Conformance Requirements10 5.4 Errors11 5.5 Use of info14 5.6 DSA Unbind14 6 Conformance to Distributed Operations Procedures15 7 Static conformance requirements15 7.1 Elements of Distributed Operations15 7.2 Administrative Authorities17 7.3 Aliases19 8 Procedures20 8.1 Operation Pass-Through20 8.2 Extensibility Rules20 8.3 Loop detection/avoidance21 8.4 Processing alias dereferencing during search21 8.5 Target object in chaining arguments, for add-entry21 8.6 Omission or variation of originator element in chaining arguments21 8.7 Local Scope21 8.8 Time and size limits22 8.9 Authentication Level22 8.10 Commonly usable replicated area23 8.11 Scope of referral23 8.12 Return to DUA23 8.13 Name-resolve on Master23 8.14 Protocol information23 8.15 Exclusions23 8.16 Aliased RDNs23 8.17 Dereferencing Continuation References23 Copyright International Organization for Standardization Provided by IHS under license with ISO Licensee=Rock Island Arsenal/9983967100, User=Schabilion, Shelley Not for Resale, 04/10/2007 06:18:39 MDTNo reproduction or networking permitted without license from IHS -,-,- © ISO/IECISO/IEC ISP 15125-4:1998(E) iii Annex A (normative) Profiles Requirements List24 Annex B (normative) Amendments and Technical Corrigenda38 Annex C (informative) Additional recommendations39 Copyright International Organization for Standardization Provided by IHS under license with ISO Licensee=Rock Island Arsenal/9983967100, User=Schabilion, Shelley Not for Resale, 04/10/2007 06:18:39 MDTNo reproduction or networking permitted without license from IHS -,-,- ISO/IEC ISP 15125-4:1998(E)© ISO/IEC iv Foreword ISO (the International Organization for Standardization) and IEC (the International Electrotechnical Commission) form the specialized system for worldwide standardization. National bodies that are members of ISO or IEC participate in the development of International Standards through technical committees established by the respective organization to deal with particular fields of technical activity. ISO and IEC technical committees collaborate in fields of mutual interest. Other international organizations, governmental and non-governmental, in liaison with ISO and IEC, also take part in the work. In the field of information technology, ISO and IEC have established a joint technical committee, ISO/IEC JTC 1. In addition to developing International Standards, ISO/IEC JTC 1 has created a Special Group on Functional Standardization for the elaboration of International Standardized Profiles. An International Standardized Profile is an internationally agreed, harmonized document which identifies a standard or group of standards, together with options and parameters, necessary to accomplish a function or a set of functions. Draft International Standardized Profiles are circulated to national bodies for voting. Publication as an International Standardized Profile requires approval by at least 75 % of the national bodies casting a vote. International Standardized Profile ISO/IEC ISP 15125-4 was prepared with the collaboration of Asia-Oceania Workshop (AOW); European Workshop for Open Systems (EWOS); Open Systems Environment Implementors' Workshop (OIW). ISO/IEC ISP 15125 consists of the following parts, under the general title Information technology International Standardized Profiles ADYnn OSI Directory: Part 1ADY11: DUA support of Directory Access Protocol Part 2ADY12: DUA support of Distributed Operations Part 3ADY21: DSA support of Directory Access Part 4ADY22: DSA support of Distributed Operations Part 5ADY41: DUA Authentication as DAP initiator Part 6ADY42: DSA Authentication as DAP responder Part 7ADY43: DSA to DSA Authentication Part 8ADY44: DSA Simple Access Control Part 9ADY45: DSA Basic Access Control Part 10ADY51: Shadowing using ROSE Part 11ADY52: Shadowing using RTSE Part 12ADY53: Shadowing subset Part 13ADY61: Administrative areas Part 14ADY62: Establishment and utilisation of shadowing agreements Part 15ADY63: Schema administration and publication Part 16ADY71: Shadowing Operational Binding Part 17ADY72: Hierarchical Operational Binding Part 18ADY73: Non-specific Hierarchical Operational Binding Annexes A and B form an integral part of this part of ISO/IEC ISP 15125. Annex C is for information only. Copyright International Organization for Standardization Provided by IHS under license with ISO Licensee=Rock Island Arsenal/9983967100, User=Schabilion, Shelley Not for Resale, 04/10/2007 06:18:39 MDTNo reproduction or networking permitted without license from IHS -,-,- © ISO/IECISO/IEC ISP 15125-4:1998(E) v Introduction The concept and structure of International Standardized Profiles for Information Systems are laid down in ISO/IEC TR 10000. The purpose of an International Standardized Profile is to recommend when and how certain information technology standards shall be used. This part of ISO/IEC ISP 15125 specifies application profile ADY22 as defined in the Technical Report ISO/IEC TR 10000-2. This part of ISO/IEC ISP 15125 is one of a set of International Standardized Profiles relating to the Directory (see TR 10000- 2) for the '93 standards. This part of ISO/IEC ISP 15125 profiles the behaviour of a DSA regarding the operation of the Directory System Protocol (DSP) when communicating with another DSA, and it defines the co-ordination of a DSA communication across several associations to perform a particular distributed operation. ISO/IEC ISP 15125 is defined within the context of Functional Standardization, in accordance with the principles specified by ISO/IEC TR 10000, “Framework and Taxonomy of International Standardized Profiles“. The concept of Functional Standardization is one part of the overall field of Information technology (IT) standardization activities, covering base standards, profiles, and registration mechanisms. A profile defines a combination of base standards that collectively perform a specific well-defined IT function. Profiles standardize the use of options and other variations in the base standards, and provide a basis for the development of uniform, internationally recognized system tests. One of the most important roles for an ISP is to serve as the basis for the development (by organizations other than ISO and IEC) of internationally recognized tests and test methods. ISPs are produced not simply to “legitimise“ a particular choice of base standards and options, but to promote real system interoperability. The development and widespread acceptance of tests based on this and other ISPs is crucial to the successful realisation of this goal. The text of this part of ISO/IEC ISP 15125 was developed in close co-operation among the Directory Expert Groups of the three International OSI Workshops: OSE Implementors Workshop (OIW) The European Workshop for Open Systems (EWOS) and The OSI Asia-Oceania Workshop (AOW). This part of ISO/IEC ISP 15125 is harmonised among these three Workshops and it was finally ratified by the Workshops' plenary assemblies. Copyright International Organization for Standardization Provided by IHS under license with ISO Licensee=Rock Island Arsenal/9983967100, User=Schabilion, Shelley Not for Resale, 04/10/2007 06:18:39 MDTNo reproduction or networking permitted without license from IHS -,-,- Copyright International Organization for Standardization Provided by IHS under license with ISO Licensee=Rock Island Arsenal/9983967100, User=Schabilion, Shelley Not for Resale, 04/10/2007 06:18:39 MDTNo reproduction or networking permitted without license from IHS -,-,- INTERNATIONAL STANDARDIZED PROFILE © ISO/IECISO/IEC ISP 15125-4:1998(E) 1 Information technology International Standardized Profiles ADYnn OSI Directory Part 4: ADY22 DSA support of Distributed Operations 1 Scope 1.1 General This part of ISO/IEC ISP 15125 profiles the behaviour of a DSA regarding the operation of the Directory System Protocol (DSP) when communicating with another DSA, as an invoker, as a performer, or both. It also profiles the co- ordination of a DSA communication across several associations to perform a particular distributed operation. It also covers the behaviour of DSAs when acting in accordance with the rules of Distributed Operations (although, in this case, the interaction can be by means of returning referrals or continuation references to DUAs using the DAP protocol). The objective of this part of ISO/IEC ISP 15125 is to define capabilities and constraints on support for DSP by DSAs so that DSAs will be able to interwork within the Directory. It therefore profiles the following: DSAs as DSP invokers in terms of both protocol and functionality DSAs as DSP performers in terms of both protocol and functionality DSAs as users over (DAP or DSP) of Referrals and Continuation references DSAs as users of HOBS (Hierarchical Operational Bindings) and of Shadow Operational Bindings in so far as they affect distributed operations using DSP Conformance to DOP (Directory Operational Protocol) is outside the scope of this part of ISO/IEC ISP 15125. The objective of this part of ISO/IEC ISP 15125 is to ensure that DSAs will be able to interwork within the Directory in two respects: Correct protocol behaviour Correct behaviour in respect of the role that each DSA has to play in respect of Distributed Operations Factors outside the scope of this part of ISO/IEC ISP 15125 include, but are not limited to: DIT structure The techniques of authentication more rigorous than simple authentication with passwords DSAs that do not support the distributed Directory are outside the scope of this part of ISO/IEC ISP 15125. 1.2 Position Within the Taxonomy This part of ISO/IEC ISP 15125 is identified in ISO/IEC TR 10000-2 as “ADY22DSA support of Distributed Operations“. It may be combined with other parts of ISO/IEC ISP 15125, or with ISO/IEC ISP 15126-1 specifying the normal use of the directory, and with T-Profiles specifying the OSI connection-mode transport service.1 1.3 Scenario The model used is described in Overview of Concepts, Models, and Services in ISO/IEC 9594-1 : 1995 | ITU-T Rec. X.500 (1993). The specifications of this part of ISO/IEC ISP 15125 apply to both the invoker and the performer roles of DSP, and also to the use of referrals and continuation references over DAP. All protocol aspects of DAP, however, are profiled by ISO/IEC ISP 15125-3. 1 T-Profiles are relevant to protocol-information and its handling (see 8.14) Copyright International Organization for Standardization Provided by IHS under license with ISO Licensee=Rock Island Arsenal/9983967100, User=Schabilion, Shelley Not for Resale, 04/10/2007 06:18:39 MDTNo reproduction or networking permitted without license from IHS -,-,- ISO/IEC ISP 15125-4:1998(E)© ISO/IEC 2 Figure 1 DSA support of distributed operations A DSA handles incoming DAP and DSP protocols, and creates chained and multi-chained operations in accordance with defined procedures. 2 Normative references The following documents contain provisions which, through references in this text, constitute provisions of this part of ISO/IEC ISP 15125. At the time of publication, the editions indicated were valid. All documents are subject to revision, and parties to agreements based on this part of ISO/IEC ISP 15125 are warned against automatically applying any more recent editions of the documents listed below, since the nature of references made by ISPs to such documents is that they may be specific to a particular edition. Members of IEC and ISO maintain registers of currently valid International Standards and ISPs, and ITU-T maintains published editions of its current Recommendations. Amendments and corrigenda to the base standards are referenced: see Annex B for a complete list of these documents which are used in this part of ISO/IEC ISP 15125. 2.1 Paired ITU-T Recommendations | International Standards equivalent in technical content ISO/IEC 9594-1 : 1995 | ITU-T Rec. X.500 (1993), Information technology Open Systems Interconnection The Directory: Overview of concepts, models, and services. ISO/IEC 9594-2 : 1995 | ITU-T Rec. X.501 (1993), Information technology Open Systems Interconnection The Directory: Models. ISO/IEC 9594-3 : 1995 | ITU-T Rec. X.511 (1993), Information technology Open Systems Interconnection The Directory: Abstract service definition. ISO/IEC 9594-4 : 1995 | ITU-T Rec. X.518 (1993), Information technology Open Systems Interconnection The Directory: Procedures for distributed operations. ISO/IEC 9594-5 : 1995 | ITU-T Rec. X.519 (1993), Information technology Open Systems Interconnection The Directory: Protocol specifications. ISO/IEC 9594-6 : 1995 | ITU-T Rec. X.520 (1993), Information technology Open Systems Interconnection The Directory: Selected attribute types. ISO/IEC 9594-7 : 1995 | ITU-T Rec. X.521 (1993), Information technology Open Systems Interconnection The Directory: Selected object classes. ISO/IEC 9594-8 : 1995 | ITU-T Rec. X.509 (1993), Information technology Open Systems Interconnection The Directory: Authentication framework. ISO/IEC 88