CSA Preface
Standards development within the Information Technology sector is harmonized with international standards development. Through the CSA Technical Committee on Information Technology (TCIT), Canadians serve as the Canadian Advisory Committee (CAC) on ISO/IEC Joint Technical Committee 1 on Information Technology (ISO/IEC JTC1) for the Standards Council of Canada (SCC), the ISO member body for Canada and sponsor of the Canadian National Committee of the IEC. Also, as a member of the International Telecommunication Union (ITU), Canada participates in the International Telegraph and Telephone Consultative Committee (ITU-T).
At the time of publication, ISO/IEC 21000-5:2004 is available from ISO and IEC in English only. CSA will publish the French version when it becomes available from ISO and IEC.
This International Standard was reviewed by the CSA TCIT under the jurisdiction of the Strategic Steering Committee on Information Technology and deemed acceptable for use in Canada. From time to time, ISO/IEC may publish addenda, corrigenda, etc. The CSA TCIT will review these documents for approval and publication. For a listing, refer to the CSA Information Products catalogue or CSA Info Update or contact a CSA Sales representative. This Standard has been formally approved, without modification, by the Technical Committee and has been approved as a National Standard of Canada by the Standards Council of Canada.
Scope
This part of ISO/IEC 21000 specifies the syntax and semantics of a Rights Expression Language.
This part of ISO/IEC 21000 does not give any permission, including permissions about who is legally or technically allowed to create Rights Expressions. It does not specify the security measures of trusted systems, propose specific applications, or describe the details of the systems required for accounting (monetary transactions, state transactions, and so on). It also does not specify if or when Rights Expressions shall be consulted.
However, this part of ISO/IEC 21000 does define an authorization model to specify whether the semantics of a set of Rights Expressions permit a given Principal to perform a given Right upon a given optional Resource during a given time interval based on a given authorization context and a given trust root.
Clause 1 gives the scope of this part of ISO/IEC 21000. Clause 2 gives the normative references. Clause 3 gives pertinent terms, definitions, symbols, and abbreviated terms. Clause 4 gives the namespaces and conventions. Clause 5 specifies the authorization model. Clause 6 defines architectural concepts. Clause 7 specifies the syntax and semantics integral to the architecture. Clause 8 specifies syntax and semantics peripheral to the architecture but still useful in many domains beyond multimedia. Clause 9 specifies syntax and semantics specific to multimedia. Annex A uses W3C XML Schema to normatively specify the syntax of the types and elements defined throughout this part of ISO/IEC 21000. Annex B normatively defines Qualified Names for identifying countries, regions, and currencies. Annex C gives an informative simplified equality algorithm. Annex D gives some example Rights Expressions. Annex E describes the design philosophy for extensions and profiles of this part of ISO/IEC 21000. Annex F demonstrates how to introduce new rights as an extension to this part of ISO/IEC 21000. Annex G gives an example profile of this part of ISO/IEC 21000. Annex H describes the relationship between ISO/IEC 21000-6 and this part of ISO/IEC 21000. Annex I describes the relationship between ISO/IEC 21000-2 and this part of ISO/IEC 21000. Annex J describes an example revocation mechanism and gives a walk-through of revocation.