Dear All as part of the EC TAS3 project we have built an open source standalone web service that supports both GFD 157 and GFD 159. The alpha release of the package is available here for download and use. http://sec.cs.kent.ac.uk/permis/downloads/Level3/standalone.shtml This standalone server can be configured with different policies, so that the PEP can utilise different access control and credential validation policies on different service requests. GFD 159 already contains support for indicating which (access control) policy should be used. GFD 157 does not. Consequently we have recently made an enhancement to GFD 157 to allow the PEP to say which credential validation policy it wants the standalone server to use. The enhancement to GFD 157 is in the attached file for the group to consider regards David ***************************************************************** David W. Chadwick, BSc PhD Professor of Information Systems Security The Computing Laboratory, University of Kent, Canterbury, CT2 7NF Skype Name: davidwchadwick Tel: +44 1227 82 3221 Fax +44 1227 762 811 Mobile: +44 77 96 44 7184 Email: D.W.Chadwick@kent.ac.uk Home Page: http://www.cs.kent.ac.uk/people/staff/dwc8/index.html Research Web site: http://www.cs.kent.ac.uk/research/groups/iss/index.html Entrust key validation string: MLJ9-DU5T-HV8J PGP Key ID is 0xBC238DE5 *****************************************************************