diff --git a/tck-dist/userguide/src/main/jbake/content/config.inc b/tck-dist/userguide/src/main/jbake/content/config.inc
index 4bb6f36..3caa744 100644
--- a/tck-dist/userguide/src/main/jbake/content/config.inc
+++ b/tck-dist/userguide/src/main/jbake/content/config.inc
@@ -49,19 +49,32 @@ and configuration to support your implementation and Arqulillian container imple
 starts up your container and deploys the test wars into it.
 
 
-4.3 Setting up an Evironment Against a Jakarta EE {JakartaEEVersion} CI for legacy TCK tests
+4.3 Setting up an Evironment Against a Jakarta EE {JakartaEEVersion} CI for SPI TCK tests
 ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
 
-The legacy tests which are part of the latest Jakarta Authentication TCK use `KEYWORDS` parameter to identify the
-tests that need to be executed for JakartaEE Full and Web profile implementations. The tck/old-tck/run/pom.xml includes
-example of using the profiles `platform` (for JakartaEE Platform - Full profile by default) and `web` (for Web Profile) 
-that sets the appropirate values for `KEYWORDS` in the CI.
+The SPI tests (in [tck]/spi which are part of the latest Jakarta Authentication TCK need additional configuration.
 
-```
-For JakartaEE Platform Full profile , KEYWORDS = jaspic_baseline|javaee
-For JakartaEE Platform Web platform , KEYWORDS = jaspic_web_profile
-```
+These SPI tests dive a little deeper into the assertions of the Jakarta Authentication SPI, and directly test for a number of 
+technical expectations. In contrast, most other tests in the Jakarta Authentication TCK look more at observable system
+behavior and are more akin to Integration Tests (IT).
+
+The common sub-module ([tck]/spi/module) of the SPI module primarily contains a special AuthConfigFactory (the TSSV) that is installed
+using a ServletContainerInitializer. This AuthConfigFactory traces a lot of operations
+on it to a logging file (saved to location set by system property "log.file.location").
+This logging file is read by the (client side) tests, which verify whether specific entries are present or absent in said log file.
+
+Both the CI (e.g. Eclipse GlassFish) and the client environment running the tests (junit) needs to have this "log.file.location" specified and
+pointing to the same location.
+
+Among the SPI tests is a test for the "auth context ID", which can be obtained in a standard way, but contains an implementation specific 
+value. In order to test that this value is correct, the expected value for a CI needs to be configured using the client environment
+system property "logical.hostname.servlet".
+
+A Jakarta Authentication implementation provides an "AuthConfigFactory" implementation, which can be obtained in a standard way, but
+obviously is of a implementation specific type. In order to test various assumptions about this "vendor AuthConfigFactory", the exact type
+needs to be provided to the tests via the system property "vendor.authconfig.factory". Both the CI (e.g. GlassFish) and the client 
+environment running the tests (junit) needs to have this "vendor.authconfig.factory" specified and set to the same value.
 
-The `tck/old-tck/source/src/com/sun/ts/lib/harness/keyword.properties` has the full list of keywords 
-mapped to the test directories in tck/old-tck/
+The `tck/pom.xml` file contains a full example for Eclipse GlassFish in the "glassfish-ci-managed" profile in the surefire configuration
+section.
 
diff --git a/tck-dist/userguide/src/main/jbake/content/toc.adoc b/tck-dist/userguide/src/main/jbake/content/toc.adoc
index 93b2d97..55b3346 100644
--- a/tck-dist/userguide/src/main/jbake/content/toc.adoc
+++ b/tck-dist/userguide/src/main/jbake/content/toc.adoc
@@ -71,7 +71,7 @@ link:using.html#GBFWO[5 Executing Tests]
 ** link:using.html#GBFWM[5.2 Running a Subset of the Tests]
 *** link:using.html#GBFWK[5.2.1 To Run a Subset of Tests in Command-Line Mode]
 ** link:using.html#GCLRR[5.3 Running the TCK Against GlassFish]
-** link:using.html#GDMSS[5.4 Running the Legacy TCK tests Against GlassFish]
+
 
 [[debugging-test-problems]]
 link:debug.html#GBFUV[6 Debugging Test Problems]
diff --git a/tck-dist/userguide/src/main/jbake/content/using.adoc b/tck-dist/userguide/src/main/jbake/content/using.adoc
index 3a6df01..f4ddbea 100644
--- a/tck-dist/userguide/src/main/jbake/content/using.adoc
+++ b/tck-dist/userguide/src/main/jbake/content/using.adoc
@@ -102,27 +102,10 @@ The tests in the directory are run.
 
 All the tests can be run against GlassFish by
 invoking the following from the tck/ directory:
-`mvn clean verify`. This will include the legacy 
-TCK JavaTest based tests in tck/old-tck.
+`mvn clean verify`. 
 
 
 [[GDMSS]][[running-the-tck-against-the-glassfish]]
 
-5.4 Running the Legacy TCK tests Against GlassFish
-~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
-
-The legacy JavaTest based TCK tests are in tck/old-tck folder.
-They can be run by below:
-
-1.  Change to the directory tck/old-tck.
-2.  Start the test run by executing the following command: +
-+
-[source]
-----
-mvn clean verify
-----
-+
-The legacy JavaTest based TCK tests in the directory are run.
-
 
 include::using.inc[]
diff --git a/tck/spi/JavadocAssertions.html b/tck/spi/JavadocAssertions.html
new file mode 100644
index 0000000..d0973d4
--- /dev/null
+++ b/tck/spi/JavadocAssertions.html
@@ -0,0 +1,1569 @@
+<html xmlns:Assertions="https://raw.githubusercontent.com/eclipse-ee4j/jakartaee-tck/master/internal/docs">
+<head>
+<META http-equiv="Content-Type" content="text/html; charset=UTF-8">
+<!--
+
+    Copyright (c) 2018, 2020 Oracle and/or its affiliates. All rights reserved.
+
+    This program and the accompanying materials are made available under the
+    terms of the Eclipse Public License v. 2.0, which is available at
+    http://www.eclipse.org/legal/epl-2.0.
+
+    This Source Code may also be made available under the following Secondary
+    Licenses when the conditions for such availability set forth in the
+    Eclipse Public License v. 2.0 are satisfied: GNU General Public License,
+    version 2 with the GNU Classpath Exception, which is available at
+    https://www.gnu.org/software/classpath/license.html.
+
+    SPDX-License-Identifier: EPL-2.0 OR GPL-2.0 WITH Classpath-exception-2.0
+
+-->
+
+<title>JavaDoc Assertion Detail</title>
+</head>
+<body bgcolor="white">
+    <br>
+    <CENTER>
+        <h2>
+            Jakarta Authentication - 3.1.0<br> JavaDoc Assertion Detail
+        </h2>
+    </CENTER>
+    <TABLE width="900" border="1" frame="box" cellpadding="5">
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Totals</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Total</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Active</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Deprecated</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Removed</FONT></TH>
+        <tr>
+            <TD align="center" valign="center"><font size="2PT"> # of Assertions </font></TD>
+            <TD align="center" valign="center"><font size="2PT">107</font></TD>
+            <TD align="center" valign="center"><font size="2PT">107</font></TD>
+            <TD align="center" valign="center"><font size="2PT">0</font></TD>
+            <TD align="center" valign="center"><font size="2PT">0</font></TD>
+        </tr>
+        <tr>
+            <TD align="center" valign="center"><font size="2PT"> # of Required Assertions </font></TD>
+            <TD align="center" valign="center"><font size="2PT">107</font></TD>
+            <TD align="center" valign="center"><font size="2PT">107</font></TD>
+            <TD align="center" valign="center"><font size="2PT">0</font></TD>
+            <TD align="center" valign="center"><font size="2PT">0</font></TD>
+        </tr>
+        <tr>
+            <TD align="center" valign="center"><font size="2PT"> # of Optional Assertions </font></TD>
+            <TD align="center" valign="center"><font size="2PT">0</font></TD>
+            <TD align="center" valign="center"><font size="2PT">0</font></TD>
+            <TD align="center" valign="center"><font size="2PT">0</font></TD>
+            <TD align="center" valign="center"><font size="2PT">0</font></TD>
+        </tr>
+    </TABLE>
+    <br>
+    <TABLE width="900" border="1" frame="box" cellpadding="1" summary="Javadoc Assertions">
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">ID</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Return</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Method/Field</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Description</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Required</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Deprecated</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Testable</FONT></TH>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:1"></a><font size="1PT">JASPIC:JAVADOC:1</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthException</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.AuthException.AuthException<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Constructs an AuthException with no detail
+                    message. A detail message is a String that describes this particular exception. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:2"></a><font size="1PT">JASPIC:JAVADOC:2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthException</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.AuthException.AuthException<br>
+
+                    ( String )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Constructs an AuthException with the
+                    specified detail message. A detail message is a String that describes this particular exception. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:3"></a><font size="1PT">JASPIC:JAVADOC:3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.ClientAuth.cleanSubject<br>
+
+                    ( MessageInfo ,<br>Subject )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Remove implementation specific principals and
+                    credentials from the subject. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:4"></a><font size="1PT">JASPIC:JAVADOC:4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.ClientAuth.cleanSubject<br>
+
+                    ( MessageInfo ,<br>Subject ) <br>throws AuthException<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT">If an error occurs during the Subject
+                    processing.</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:5"></a><font size="1PT">JASPIC:JAVADOC:5</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthStatus</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.ClientAuth.secureRequest<br>
+
+                    ( MessageInfo ,<br>Subject )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Secure a service request message before
+                    sending it to the service. This method is called to transform the request message acquired by
+                    calling getRequestMessage (on messageInfo) into the mechanism-specific form to be sent by the
+                    runtime. This method conveys the outcome of its message processing either by returning an AuthStatus
+                    value or by throwing an AuthException. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:6"></a><font size="1PT">JASPIC:JAVADOC:6</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthStatus</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.ClientAuth.secureRequest<br>
+
+                    ( MessageInfo ,<br>Subject ) <br>throws AuthException<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT">When the message processing failed without
+                    establishing a failure response message (in messageInfo).</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:7"></a><font size="1PT">JASPIC:JAVADOC:7</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthStatus</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.ClientAuth.validateResponse<br>
+
+                    ( MessageInfo ,<br>Subject ,<br>Subject )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Validate a received service response. This
+                    method is called to transform the mechanism-specific response message acquired by calling
+                    getResponseMessage (on messageInfo) into the validated application message to be returned to the
+                    message processing runtime. If the response message is a (mechanism-specific) meta-message, the
+                    method implementation must attempt to transform the meta-message into the next mechanism-specific
+                    request message to be sent by the runtime. This method conveys the outcome of its message processing
+                    either by returning an AuthStatus value or by throwing an AuthException. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:8"></a><font size="1PT">JASPIC:JAVADOC:8</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthStatus</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.ClientAuth.validateResponse<br>
+
+                    ( MessageInfo ,<br>Subject ,<br>Subject ) <br>throws AuthException<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT">When the message processing failed without
+                    establishing a failure response message (in messageInfo).</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:9"></a><font size="1PT">JASPIC:JAVADOC:9</font></TD>
+            <TD align="center" valign="center"><font size="1PT">Map</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.MessageInfo.getMap<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get (a reference to) the Map object of this
+                    MessageInfo. Operations performed on the acquired Map must effect the Map within the MessageInfo. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:10"></a><font size="1PT">JASPIC:JAVADOC:10</font></TD>
+            <TD align="center" valign="center"><font size="1PT">Object</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.MessageInfo.getRequestMessage<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the request message object from this
+                    MessageInfo. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:11"></a><font size="1PT">JASPIC:JAVADOC:11</font></TD>
+            <TD align="center" valign="center"><font size="1PT">Object</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.MessageInfo.getResponseMessage<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the response message object from this
+                    MessageInfo. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:12"></a><font size="1PT">JASPIC:JAVADOC:12</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.MessageInfo.setRequestMessage<br>
+
+                    ( Object )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Set the request message object in this
+                    MessageInfo. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:13"></a><font size="1PT">JASPIC:JAVADOC:13</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.MessageInfo.setResponseMessage<br>
+
+                    ( Object )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Set the response message object in this
+                    MessageInfo. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:14"></a><font size="1PT">JASPIC:JAVADOC:14</font></TD>
+            <TD align="center" valign="center"><font size="1PT">TargetPolicy[]</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.MessagePolicy.getTargetPolicies<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the target policies that comprise the
+                    authentication policy. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:15"></a><font size="1PT">JASPIC:JAVADOC:15</font></TD>
+            <TD align="center" valign="center"><font size="1PT">boolean</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.MessagePolicy.isMandatory<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the MessagePolicy modifier. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:16"></a><font size="1PT">JASPIC:JAVADOC:16</font></TD>
+            <TD align="center" valign="center"><font size="1PT">MessagePolicy</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.MessagePolicy.MessagePolicy<br>
+
+                    ( TargetPolicy[] ,<br>boolean )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Create a MessagePolicy instance with an array
+                    of target policies. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:17"></a><font size="1PT">JASPIC:JAVADOC:17</font></TD>
+            <TD align="center" valign="center"><font size="1PT">String</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.MessagePolicy.ProtectionPolicy.getID<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the ProtectionPolicy identifier. An
+                    identifier may represent a conceptual protection policy (as is the case with the static identifiers
+                    defined within this interface) or it may identify a procedural policy expression or plan that may be
+                    more difficult to categorize in terms of a conceptual identifier. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:18"></a><font size="1PT">JASPIC:JAVADOC:18</font></TD>
+            <TD align="center" valign="center"><font size="1PT">Object</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.MessagePolicy.Target.get<br>
+
+                    ( MessageInfo )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the Object identified by the Target from
+                    the MessageInfo. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:19"></a><font size="1PT">JASPIC:JAVADOC:19</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.MessagePolicy.Target.put<br>
+
+                    ( MessageInfo ,<br>Object )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Put the Object into the MessageInfo at the
+                    location identified by the target. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:20"></a><font size="1PT">JASPIC:JAVADOC:20</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.MessagePolicy.Target.remove<br>
+
+                    ( MessageInfo )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Remove the Object identified by the Target
+                    from the MessageInfo. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:21"></a><font size="1PT">JASPIC:JAVADOC:21</font></TD>
+            <TD align="center" valign="center"><font size="1PT">ProtectionPolicy</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.MessagePolicy.TargetPolicy.getProtectionPolicy<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the ProtectionPolicy that applies to the
+                    targets. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:22"></a><font size="1PT">JASPIC:JAVADOC:22</font></TD>
+            <TD align="center" valign="center"><font size="1PT">Target[]</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.MessagePolicy.TargetPolicy.getTargets<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the array of layer-specific target
+                    descriptors that identify the one or more message parts to which the specified message protection
+                    policy applies. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:23"></a><font size="1PT">JASPIC:JAVADOC:23</font></TD>
+            <TD align="center" valign="center"><font size="1PT">TargetPolicy</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.MessagePolicy.TargetPolicy.MessagePolicy.TargetPolicy<br>
+
+                    ( Target[] ,<br>ProtectionPolicy )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Create a TargetPolicy instance with an array
+                    of Targets and with a ProtectionPolicy. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:24"></a><font size="1PT">JASPIC:JAVADOC:24</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.ServerAuth.cleanSubject<br>
+
+                    ( MessageInfo ,<br>Subject )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Remove method specific principals and
+                    credentials from the subject. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:25"></a><font size="1PT">JASPIC:JAVADOC:25</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.ServerAuth.cleanSubject<br>
+
+                    ( MessageInfo ,<br>Subject ) <br>throws AuthException<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT">If an error occurs during the Subject
+                    processing.</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:26"></a><font size="1PT">JASPIC:JAVADOC:26</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthStatus</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.ServerAuth.secureResponse<br>
+
+                    ( MessageInfo ,<br>Subject )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Secure a service response before sending it
+                    to the client. This method is called to transform the response message acquired by calling
+                    getResponseMessage (on messageInfo) into the mechanism-specific form to be sent by the runtime. This
+                    method conveys the outcome of its message processing either by returning an AuthStatus value or by
+                    throwing an AuthException. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:27"></a><font size="1PT">JASPIC:JAVADOC:27</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthStatus</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.ServerAuth.secureResponse<br>
+
+                    ( MessageInfo ,<br>Subject ) <br>throws AuthException<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT">When the message processing failed without
+                    establishing a failure response message (in messageInfo).</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:28"></a><font size="1PT">JASPIC:JAVADOC:28</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthStatus</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.ServerAuth.validateRequest<br>
+
+                    ( MessageInfo ,<br>Subject ,<br>Subject )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Authenticate a received service request. This
+                    method is called to transform the mechanism-specific request message acquired by calling
+                    getRequestMessage (on messageInfo) into the validated application message to be returned to the
+                    message processing runtime. If the received message is a (mechanism-specific) meta-message, the
+                    method implementation must attempt to transform the meta-message into a corresponding
+                    mechanism-specific response message, or to the validated application request message. The runtime
+                    will bind a validated application message into the the corresponding service invocation. This method
+                    conveys the outcome of its message processing either by returning an AuthStatus value or by throwing
+                    an AuthException. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:29"></a><font size="1PT">JASPIC:JAVADOC:29</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthStatus</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.ServerAuth.validateRequest<br>
+
+                    ( MessageInfo ,<br>Subject ,<br>Subject ) <br>throws AuthException<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT">When the message processing failed without
+                    establishing a failure response message (in messageInfo).</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:30"></a><font size="1PT">JASPIC:JAVADOC:30</font></TD>
+            <TD align="center" valign="center"><font size="1PT">CallerPrincipalCallback</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.CallerPrincipalCallback.CallerPrincipalCallback<br>
+
+                    ( Subject ,<br>Principal )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Create a CallerPrincipalCallback to set the
+                    container's representation of the caller principal </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:31"></a><font size="1PT">JASPIC:JAVADOC:31</font></TD>
+            <TD align="center" valign="center"><font size="1PT">CallerPrincipalCallback</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.CallerPrincipalCallback.CallerPrincipalCallback<br>
+
+                    ( Subject ,<br>String )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Create a CallerPrincipalCallback to set the
+                    container's representation of the caller principal. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:32"></a><font size="1PT">JASPIC:JAVADOC:32</font></TD>
+            <TD align="center" valign="center"><font size="1PT">String</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.CallerPrincipalCallback.getName<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the caller principal name. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:33"></a><font size="1PT">JASPIC:JAVADOC:33</font></TD>
+            <TD align="center" valign="center"><font size="1PT">Principal</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.CallerPrincipalCallback.getPrincipal<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the caller principal. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:34"></a><font size="1PT">JASPIC:JAVADOC:34</font></TD>
+            <TD align="center" valign="center"><font size="1PT">Subject</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.CallerPrincipalCallback.getSubject<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the Subject in which the handler will
+                    distinguish the caller principal </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:35"></a><font size="1PT">JASPIC:JAVADOC:35</font></TD>
+            <TD align="center" valign="center"><font size="1PT">CertStoreCallback</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.CertStoreCallback.CertStoreCallback<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Create a CertStoreCallback. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:36"></a><font size="1PT">JASPIC:JAVADOC:36</font></TD>
+            <TD align="center" valign="center"><font size="1PT">CertStore</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.CertStoreCallback.getCertStore<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Used by the CertStore user to obtain the
+                    CertStore set within the Callback. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:37"></a><font size="1PT">JASPIC:JAVADOC:37</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.CertStoreCallback.setCertStore<br>
+
+                    ( CertStore )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Used by the CallbackHandler to set the
+                    CertStore within the Callback. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:38"></a><font size="1PT">JASPIC:JAVADOC:38</font></TD>
+            <TD align="center" valign="center"><font size="1PT">String[]</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.GroupPrincipalCallback.getGroups<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the array of group names. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:39"></a><font size="1PT">JASPIC:JAVADOC:39</font></TD>
+            <TD align="center" valign="center"><font size="1PT">Subject</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.GroupPrincipalCallback.getSubject<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the Subject in which the handler will
+                    establish the group principals. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:40"></a><font size="1PT">JASPIC:JAVADOC:40</font></TD>
+            <TD align="center" valign="center"><font size="1PT">GroupPrincipalCallback</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.GroupPrincipalCallback.GroupPrincipalCallback<br>
+
+                    ( Subject ,<br>String[] )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Create a GroupPrincipalCallback to establish
+                    the container's representation of the corresponding group principals within the Subject. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:41"></a><font size="1PT">JASPIC:JAVADOC:41</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PasswordValidationCallback.clearPassword<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Clear the password. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:42"></a><font size="1PT">JASPIC:JAVADOC:42</font></TD>
+            <TD align="center" valign="center"><font size="1PT">char[]</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PasswordValidationCallback.getPassword<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the password. Note that this method
+                    returns a reference to the password. If a clone of the array is created it is the caller's
+                    responsibility to zero out the password information after it is no longer needed. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:43"></a><font size="1PT">JASPIC:JAVADOC:43</font></TD>
+            <TD align="center" valign="center"><font size="1PT">boolean</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PasswordValidationCallback.getResult<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the authentication result. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:44"></a><font size="1PT">JASPIC:JAVADOC:44</font></TD>
+            <TD align="center" valign="center"><font size="1PT">Subject</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PasswordValidationCallback.getSubject<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the subject. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:45"></a><font size="1PT">JASPIC:JAVADOC:45</font></TD>
+            <TD align="center" valign="center"><font size="1PT">String</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PasswordValidationCallback.getUsername<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the username. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:46"></a><font size="1PT">JASPIC:JAVADOC:46</font></TD>
+            <TD align="center" valign="center"><font size="1PT">PasswordValidationCallback</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PasswordValidationCallback.PasswordValidationCallback<br>
+
+                    ( Subject ,<br>String ,<br>char[] )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Create a PasswordValidationCallback. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:47"></a><font size="1PT">JASPIC:JAVADOC:47</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PasswordValidationCallback.setResult<br>
+
+                    ( boolean )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Set the authentication result. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:48"></a><font size="1PT">JASPIC:JAVADOC:48</font></TD>
+            <TD align="center" valign="center"><font size="1PT">Certificate[]</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PrivateKeyCallback.getChain<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Used to obtain the certicicate chain set
+                    within the Callback. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:49"></a><font size="1PT">JASPIC:JAVADOC:49</font></TD>
+            <TD align="center" valign="center"><font size="1PT">PrivateKey</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PrivateKeyCallback.getKey<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Used to obtain the private key set within the
+                    Callback. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:50"></a><font size="1PT">JASPIC:JAVADOC:50</font></TD>
+            <TD align="center" valign="center"><font size="1PT">Request</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PrivateKeyCallback.getRequest<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Used by the CallbackHandler to get the
+                    Request object that identifies the private key to be returned. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:51"></a><font size="1PT">JASPIC:JAVADOC:51</font></TD>
+            <TD align="center" valign="center"><font size="1PT">PrivateKeyCallback</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PrivateKeyCallback.PrivateKeyCallback<br>
+
+                    ( Request )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Constructs this PrivateKeyCallback with a
+                    private key Request object. The request object identifies the private key to be returned. The
+                    corresponding certificate chain for the private key is also returned. If the request object is null,
+                    the handler of the callback relies on its own default. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:52"></a><font size="1PT">JASPIC:JAVADOC:52</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PrivateKeyCallback.setKey<br>
+
+                    ( PrivateKey ,<br>Certificate[] )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Used by the CallbackHandler to set the
+                    requested private key and the corresponding certificate chain within the Callback. If the requested
+                    private key or chain could not be found, then both values must be set to null. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:53"></a><font size="1PT">JASPIC:JAVADOC:53</font></TD>
+            <TD align="center" valign="center"><font size="1PT">String</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PrivateKeyCallback.AliasRequest.getAlias<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the alias. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:54"></a><font size="1PT">JASPIC:JAVADOC:54</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AliasRequest</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PrivateKeyCallback.AliasRequest.PrivateKeyCallback.AliasRequest<br>
+
+                    ( String )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Construct an AliasRequest with an alias. The
+                    alias is used to directly identify the private key to be returned. The corresponding certificate
+                    chain for the private key is also returned. If the alias is null, the handler of the callback relies
+                    on its own default. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:55"></a><font size="1PT">JASPIC:JAVADOC:55</font></TD>
+            <TD align="center" valign="center"><font size="1PT">String</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PrivateKeyCallback.DigestRequest.getAlgorithm<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the algorithm identifier. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:56"></a><font size="1PT">JASPIC:JAVADOC:56</font></TD>
+            <TD align="center" valign="center"><font size="1PT">byte[]</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PrivateKeyCallback.DigestRequest.getDigest<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the digest value. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:57"></a><font size="1PT">JASPIC:JAVADOC:57</font></TD>
+            <TD align="center" valign="center"><font size="1PT">DigestRequest</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PrivateKeyCallback.DigestRequest.PrivateKeyCallback.DigestRequest<br>
+
+                    ( byte[] ,<br>String )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Constructs a DigestRequest with a digest
+                    value and algorithm identifier. The digest of the certificate whose private key is returned must
+                    match the provided digest. The certificate digest is computed by applying the specified algorithm to
+                    the bytes of the certificate. For example:
+                    MessageDigest.getInstance(algorithm).digest(cert.getEncoded()) . The corresponding certificate chain
+                    for the private key is also returned. If the digest or algorithm parameters are null, the handler of
+                    the callback relies on its own defaults. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:58"></a><font size="1PT">JASPIC:JAVADOC:58</font></TD>
+            <TD align="center" valign="center"><font size="1PT">X500Principal</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PrivateKeyCallback.IssuerSerialNumRequest.getIssuer<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the issuer. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:59"></a><font size="1PT">JASPIC:JAVADOC:59</font></TD>
+            <TD align="center" valign="center"><font size="1PT">BigInteger</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PrivateKeyCallback.IssuerSerialNumRequest.getSerialNum<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the serial number. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:60"></a><font size="1PT">JASPIC:JAVADOC:60</font></TD>
+            <TD align="center" valign="center"><font size="1PT">IssuerSerialNumRequest</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PrivateKeyCallback.IssuerSerialNumRequest.PrivateKeyCallback.IssuerSerialNumRequest<br>
+
+                    ( X500Principal ,<br>BigInteger )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Constructs a IssuerSerialNumRequest with an
+                    issuer/serial number. The issuer/serial number is used to identify a public key certificate. The
+                    corresponding private key is returned in the callback. The corresponding certificate chain for the
+                    private key is also returned. If the issuer/serialNumber parameters are null, the handler of the
+                    callback relies on its own defaults. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:61"></a><font size="1PT">JASPIC:JAVADOC:61</font></TD>
+            <TD align="center" valign="center"><font size="1PT">byte[]</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PrivateKeyCallback.SubjectKeyIDRequest.getSubjectKeyID<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the subjectKeyID. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:62"></a><font size="1PT">JASPIC:JAVADOC:62</font></TD>
+            <TD align="center" valign="center"><font size="1PT">SubjectKeyIDRequest</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.PrivateKeyCallback.SubjectKeyIDRequest.PrivateKeyCallback.SubjectKeyIDRequest<br>
+
+                    ( byte[] )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Construct a SubjectKeyIDRequest with an
+                    subjectKeyID. The subjectKeyID is used to directly identify the private key to be returned. The
+                    corresponding certificate chain for the private key is also returned. If the subjectKeyID is null,
+                    the handler of the callback relies on its own default. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:63"></a><font size="1PT">JASPIC:JAVADOC:63</font></TD>
+            <TD align="center" valign="center"><font size="1PT">SecretKey</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.SecretKeyCallback.getKey<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Used to obtain the secret key set within the
+                    Callback. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:64"></a><font size="1PT">JASPIC:JAVADOC:64</font></TD>
+            <TD align="center" valign="center"><font size="1PT">Request</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.SecretKeyCallback.getRequest<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Used by the CallbackHandler to get the
+                    Request object which identifies the secret key to be returned. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:65"></a><font size="1PT">JASPIC:JAVADOC:65</font></TD>
+            <TD align="center" valign="center"><font size="1PT">SecretKeyCallback</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.SecretKeyCallback.SecretKeyCallback<br>
+
+                    ( Request )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Constructs this SecretKeyCallback with a
+                    secret key Request object. The request object identifies the secret key to be returned. If the alias
+                    is null, the handler of the callback relies on its own default. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:66"></a><font size="1PT">JASPIC:JAVADOC:66</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.SecretKeyCallback.setKey<br>
+
+                    ( SecretKey )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Used by the CallbackHandler to set the
+                    requested secret key within the Callback. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:67"></a><font size="1PT">JASPIC:JAVADOC:67</font></TD>
+            <TD align="center" valign="center"><font size="1PT">String</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.SecretKeyCallback.AliasRequest.getAlias<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the alias. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:68"></a><font size="1PT">JASPIC:JAVADOC:68</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AliasRequest</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.SecretKeyCallback.AliasRequest.SecretKeyCallback.AliasRequest<br>
+
+                    ( String )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Construct an AliasRequest with an alias. The
+                    alias is used to directly identify the secret key to be returned. If the alias is null, the handler
+                    of the callback relies on its own default. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:69"></a><font size="1PT">JASPIC:JAVADOC:69</font></TD>
+            <TD align="center" valign="center"><font size="1PT">KeyStore</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.TrustStoreCallback.getTrustStore<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Used by the TrustStore user to obtain the
+                    TrustStore set within the Callback. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:70"></a><font size="1PT">JASPIC:JAVADOC:70</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.TrustStoreCallback.setTrustStore<br>
+
+                    ( KeyStore )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Used by the CallbackHandler to set the
+                    trusted certificate keystore within the Callback. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:71"></a><font size="1PT">JASPIC:JAVADOC:71</font></TD>
+            <TD align="center" valign="center"><font size="1PT">TrustStoreCallback</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.callback.TrustStoreCallback.TrustStoreCallback<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Create a TrustStoreCallback. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:72"></a><font size="1PT">JASPIC:JAVADOC:72</font></TD>
+            <TD align="center" valign="center"><font size="1PT">String</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfig.getAppContext<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the application context identifier of
+                    this authentication context configuration object. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:73"></a><font size="1PT">JASPIC:JAVADOC:73</font></TD>
+            <TD align="center" valign="center"><font size="1PT">String</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfig.getAuthContextID<br>
+
+                    ( MessageInfo )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the authentication context identifier
+                    corresponding to the request and response objects encapsulated in messageInfo. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:74"></a><font size="1PT">JASPIC:JAVADOC:74</font></TD>
+            <TD align="center" valign="center"><font size="1PT">String</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfig.getMessageLayer<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the message layer name of this
+                    authentication context configuration object. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:75"></a><font size="1PT">JASPIC:JAVADOC:75</font></TD>
+            <TD align="center" valign="center"><font size="1PT">boolean</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfig.isProtected<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Used to determine whether the authentication
+                    context configuration object encapsulates any protected authentication contexts. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:76"></a><font size="1PT">JASPIC:JAVADOC:76</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfig.refresh<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Causes a dynamic anthentication context
+                    configuration object to update the internal state that it uses to process calls to its
+                    getAuthContext method. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:77"></a><font size="1PT">JASPIC:JAVADOC:77</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthConfigFactory</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfigFactory.AuthConfigFactory<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:78"></a><font size="1PT">JASPIC:JAVADOC:78</font></TD>
+            <TD align="center" valign="center"><font size="1PT">String[]</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfigFactory.detachListener<br>
+
+                    ( RegistrationListener ,<br>String ,<br>String )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Disassociate the listener from all the
+                    provider registrations whose layer and appContext values are matched by the corresponding arguments
+                    to this method. Factories should periodically notify Listeners to effectively detach listeners that
+                    are no longer in use. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:79"></a><font size="1PT">JASPIC:JAVADOC:79</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthConfigProvider</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfigFactory.getConfigProvider<br>
+
+                    ( String ,<br>String ,<br>RegistrationListener )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get a registered AuthConfigProvider from the
+                    factory. Get the provider of ServerAuthConfig and ClientAuthConfig objects registered for the
+                    identified message layer and application context. All factories shall employ the following
+                    precedence rules to select the registered AuthConfigProvider that matches the layer and appContext
+                    arguments: The provider specifically registered for the values passed as the layer and appContext
+                    arguments shall be selected. If no provider is selected according to the preceding rule, the
+                    provider specifically registered for the value passed as the appContext argument and for all (that
+                    is, null) layers shall be selected. If no provider is selected according to the preceding rules, the
+                    provider specifically registered for the value passed as the layer argument and for all (that is,
+                    null) appContexts shall be selected. If no provider is selected according to the preceding rules,
+                    the provider registered for all (that is, null) layers and for all (that is, null) appContexts shall
+                    be selected. If no provider is selected according to the preceding rules, the factory shall
+                    terminate its search for a registered provider. The above precedence rules apply equivalently to
+                    registrations created with a null or non-null className argument. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:80"></a><font size="1PT">JASPIC:JAVADOC:80</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthConfigFactory</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfigFactory.getFactory<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the system-wide AuthConfigFactory
+                    implementation. If a non-null system-wide factory instance is defined at the time of the call, for
+                    example, with setFactory, it will be returned. Otherwise, an attempt will be made to construct an
+                    instance of the default AuthConfigFactory implementation class. The fully qualified class name of
+                    the default factory implementation class is obtained from the value of the
+                    authconfigprovider.factory security property. When an instance of the default factory implementation
+                    class is successfully constructed by this method, this method will set it as the system-wide factory
+                    instance. The absolute pathname of the Java security properties file is
+                    JAVA_HOME/lib/security/java.security, where JAVA_HOME refers to the directory where the JDK was
+                    installed. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:81"></a><font size="1PT">JASPIC:JAVADOC:81</font></TD>
+            <TD align="center" valign="center"><font size="1PT">RegistrationContext</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfigFactory.getRegistrationContext<br>
+
+                    ( String )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the the registration context for the
+                    identified registration. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:82"></a><font size="1PT">JASPIC:JAVADOC:82</font></TD>
+            <TD align="center" valign="center"><font size="1PT">String[]</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfigFactory.getRegistrationIDs<br>
+
+                    ( AuthConfigProvider )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the registration identifiers for all
+                    registrations of the provider instance at the factory. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:83"></a><font size="1PT">JASPIC:JAVADOC:83</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfigFactory.refresh<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Cause the factory to reprocess its persisent
+                    declarative representation of provider registrations. A factory should only replace an existing
+                    registration when a change of provider implementation class or initialization properties has
+                    occurred. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:84"></a><font size="1PT">JASPIC:JAVADOC:84</font></TD>
+            <TD align="center" valign="center"><font size="1PT">String</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfigFactory.registerConfigProvider<br>
+
+                    ( String ,<br>Map ,<br>String ,<br>String ,<br>String )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Registers within the factory and records
+                    within the factory's persistent declarative representation of provider registrations a provider of
+                    ServerAuthConfig and/or ClientAuthConfig objects for a message layer and application context
+                    identifier. This method typically constructs an instance of the provider before registering it with
+                    the factory. Factories may extend or modify the persisted registrations of existing provider
+                    instances, if those instances were registered with ClassName and properties arguments equivalent to
+                    those passed in the current call. This method employs the two argument constructor required to be
+                    supported by every implementation of the AuthConfigProvider interface, and this method must pass a
+                    null value for the factory argument of the constructor. AuthConfigProviderImpl
+                    AuthConfigProviderImpl(Map properties, AuthConfigFactory factory). At most one registration may
+                    exist within the factory for a given combination of message layer and appContext. Any pre-existing
+                    registration with identical values for layer and appContext is replaced by a subsequent
+                    registration. When replacement occurs, the registration identifier, layer, and appContext identifier
+                    remain unchanged, and the AuthConfigProvider (with initialization properties) and description are
+                    replaced. Within the lifetime of its Java process, a factory must assign unique registration
+                    identifiers to registrations, and must never assign a previously used registration identifier to a
+                    registration whose message layer and or appContext identifier differ from the previous use.
+                    Programmatic registrations performed by using this method must update (according to the replacement
+                    rules described above) the persistent declarative representation of provider registrations employed
+                    by the factory constructor. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:85"></a><font size="1PT">JASPIC:JAVADOC:85</font></TD>
+            <TD align="center" valign="center"><font size="1PT">String</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfigFactory.registerConfigProvider<br>
+
+                    ( AuthConfigProvider ,<br>String ,<br>String ,<br>String )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Registers within the (in-memory) factory, a
+                    provider of ServerAuthConfig and/or ClientAuthConfig objects for a message layer and application
+                    context identifier. This method does NOT effect the factory's persistent declarative representation
+                    of provider registrations, and is intended to be used by providers to perform self-Registration. At
+                    most one registration may exist within the factory for a given combination of message layer and
+                    appContext. Any pre-existing registration with identical values for layer and appContext is replaced
+                    by a subsequent registration. When replacement occurs, the registration identifier, layer, and
+                    appContext identifier remain unchanged, and the AuthConfigProvider (with initialization properties)
+                    and description are replaced. Within the lifetime of its Java process, a factory must assign unique
+                    registration identifiers to registrations, and must never assign a previously used registration
+                    identifier to a registration whose message layer and or appContext identifier differ from the
+                    previous use. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:86"></a><font size="1PT">JASPIC:JAVADOC:86</font></TD>
+            <TD align="center" valign="center"><font size="1PT">boolean</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfigFactory.removeRegistration<br>
+
+                    ( String )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Remove the identified provider registration
+                    from the factory (and from the persistent declarative representation of provider registrations, if
+                    appropriate) and invoke any listeners associated with the removed registration. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:87"></a><font size="1PT">JASPIC:JAVADOC:87</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfigFactory.setFactory<br>
+
+                    ( AuthConfigFactory )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Set the system-wide AuthConfigFactory
+                    implementation. If an implementation was set previously, it will be replaced. Listeners are not
+                    notified of a change to the registered factory. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:88"></a><font size="1PT">JASPIC:JAVADOC:88</font></TD>
+            <TD align="center" valign="center"><font size="1PT">String</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfigFactory.RegistrationContext.getAppContext<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the application context identifier from
+                    the registration context </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:89"></a><font size="1PT">JASPIC:JAVADOC:89</font></TD>
+            <TD align="center" valign="center"><font size="1PT">String</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfigFactory.RegistrationContext.getDescription<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the description from the registration
+                    context </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:90"></a><font size="1PT">JASPIC:JAVADOC:90</font></TD>
+            <TD align="center" valign="center"><font size="1PT">String</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfigFactory.RegistrationContext.getMessageLayer<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the layer name from the registration
+                    context </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:91"></a><font size="1PT">JASPIC:JAVADOC:91</font></TD>
+            <TD align="center" valign="center"><font size="1PT">boolean</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfigFactory.RegistrationContext.isPersistent<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the persisted status from the
+                    registration context. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:92"></a><font size="1PT">JASPIC:JAVADOC:92</font></TD>
+            <TD align="center" valign="center"><font size="1PT">ClientAuthConfig</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfigProvider.getClientAuthConfig<br>
+
+                    ( String ,<br>String ,<br>CallbackHandler )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get an instance of ClientAuthConfig from this
+                    provider. The implementation of this method returns a ClientAuthConfig instance that describes the
+                    configuration of ClientAuthModules at a given message layer, and for use in an identified
+                    application context. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:93"></a><font size="1PT">JASPIC:JAVADOC:93</font></TD>
+            <TD align="center" valign="center"><font size="1PT">ClientAuthConfig</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfigProvider.getClientAuthConfig<br>
+
+                    ( String ,<br>String ,<br>CallbackHandler ) <br>throws AuthException<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT">If this provider does not support the
+                    assignment of a default CallbackHandler to the returned ClientAuthConfig.</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:94"></a><font size="1PT">JASPIC:JAVADOC:94</font></TD>
+            <TD align="center" valign="center"><font size="1PT">ServerAuthConfig</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfigProvider.getServerAuthConfig<br>
+
+                    ( String ,<br>String ,<br>CallbackHandler )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get an instance of ServerAuthConfig from this
+                    provider. The implementation of this method returns a ServerAuthConfig instance that describes the
+                    configuration of ServerAuthModules at a given message layer, and for a particular application
+                    context. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:95"></a><font size="1PT">JASPIC:JAVADOC:95</font></TD>
+            <TD align="center" valign="center"><font size="1PT">ServerAuthConfig</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfigProvider.getServerAuthConfig<br>
+
+                    ( String ,<br>String ,<br>CallbackHandler ) <br>throws AuthException<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT">If this provider does not support the
+                    assignment of a default CallbackHandler to the returned ServerAuthConfig.</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:96"></a><font size="1PT">JASPIC:JAVADOC:96</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.AuthConfigProvider.refresh<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Causes a dynamic configuration provider to
+                    update its internal state such that any resulting change to its state is reflected in the
+                    corresponding authentication context configuration objects previously created by the provider within
+                    the current process context. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:97"></a><font size="1PT">JASPIC:JAVADOC:97</font></TD>
+            <TD align="center" valign="center"><font size="1PT">ClientAuthContext</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.ClientAuthConfig.getAuthContext<br>
+
+                    ( String ,<br>Subject ,<br>Map )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get a ClientAuthContext instance from this
+                    ClientAuthConfig. The implementation of this method returns a ClientAuthContext instance that
+                    encapsulates the ClientAuthModules used to secure and validate requests/responses associated with
+                    the given authContextID. Specifically, this method accesses this ClientAuthConfig object with the
+                    argument authContextID to determine the ClientAuthModules that are to be encapsulated in the
+                    returned ClientAuthContext instance. The ClientAuthConfig object establishes the request and
+                    response MessagePolicy objects that are passed to the encapsulated modules when they are initialized
+                    by the returned ClientAuthContext instance. It is the modules' responsibility to enforce these
+                    policies when invoked. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:98"></a><font size="1PT">JASPIC:JAVADOC:98</font></TD>
+            <TD align="center" valign="center"><font size="1PT">ClientAuthContext</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.ClientAuthConfig.getAuthContext<br>
+
+                    ( String ,<br>Subject ,<br>Map ) <br>throws AuthException<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT">If this method fails.</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:99"></a><font size="1PT">JASPIC:JAVADOC:99</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.RegistrationListener.notify<br>
+
+                    ( String ,<br>String )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Notify the listener that a registration with
+                    which it was associated was replaced or unregistered. When a RegistrationListener is associated with
+                    a provider registration within the factory, the factory must call its notify method when the
+                    corresponding registration is unregistered or replaced. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:100"></a><font size="1PT">JASPIC:JAVADOC:100</font></TD>
+            <TD align="center" valign="center"><font size="1PT">ServerAuthContext</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.ServerAuthConfig.getAuthContext<br>
+
+                    ( String ,<br>Subject ,<br>Map )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get a ServerAuthContext instance from this
+                    ServerAuthConfig. The implementation of this method returns a ServerAuthContext instance that
+                    encapsulates the ServerAuthModules used to validate requests and secure responses associated with
+                    the given authContextID. Specifically, this method accesses this ServerAuthConfig object with the
+                    argument authContextID to determine the ServerAuthModules that are to be encapsulated in the
+                    returned ServerAuthContext instance. The ServerAuthConfig object establishes the request and
+                    response MessagePolicy objects that are passed to the encapsulated modules when they are initialized
+                    by the returned ServerAuthContext instance. It is the modules' responsibility to enforce these
+                    policies when invoked. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:101"></a><font size="1PT">JASPIC:JAVADOC:101</font></TD>
+            <TD align="center" valign="center"><font size="1PT">ServerAuthContext</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.config.ServerAuthConfig.getAuthContext<br>
+
+                    ( String ,<br>Subject ,<br>Map ) <br>throws AuthException<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT">If this method fails.</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:102"></a><font size="1PT">JASPIC:JAVADOC:102</font></TD>
+            <TD align="center" valign="center"><font size="1PT">Class[]</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.module.ClientAuthModule.getSupportedMessageTypes<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the one or more Class objects
+                    representing the message types supported by the module. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:103"></a><font size="1PT">JASPIC:JAVADOC:103</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.module.ClientAuthModule.initialize<br>
+
+                    ( MessagePolicy ,<br>MessagePolicy ,<br>CallbackHandler ,<br>Map )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Initialize this module with request and
+                    response message policies to enforce, a CallbackHandler, and any module-specific configuration
+                    properties. The request policy and the response policy must not both be null. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:104"></a><font size="1PT">JASPIC:JAVADOC:104</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.module.ClientAuthModule.initialize<br>
+
+                    ( MessagePolicy ,<br>MessagePolicy ,<br>CallbackHandler ,<br>Map ) <br>throws
+                    AuthException<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT">If module initialization fails, including for
+                    the case where the options argument contains elements that are not supported by the module.</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:105"></a><font size="1PT">JASPIC:JAVADOC:105</font></TD>
+            <TD align="center" valign="center"><font size="1PT">Class[]</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.module.ServerAuthModule.getSupportedMessageTypes<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Get the one or more Class objects
+                    representing the message types supported by the module. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:106"></a><font size="1PT">JASPIC:JAVADOC:106</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.module.ServerAuthModule.initialize<br>
+
+                    ( MessagePolicy ,<br>MessagePolicy ,<br>CallbackHandler ,<br>Map )
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Initialize this module with request and
+                    response message policies to enforce, a CallbackHandler, and any module-specific configuration
+                    properties. The request policy and the response policy must not both be null. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:JAVADOC:107"></a><font size="1PT">JASPIC:JAVADOC:107</font></TD>
+            <TD align="center" valign="center"><font size="1PT">void</font></TD>
+            <TD align="left" valign="center"><font size="1PT">jakarta.security.auth.message.module.ServerAuthModule.initialize<br>
+
+                    ( MessagePolicy ,<br>MessagePolicy ,<br>CallbackHandler ,<br>Map ) <br>throws
+                    AuthException<br>
+            </font></TD>
+            <TD align="left" valign="center"><font size="1PT">If module initialization fails, including for
+                    the case where the options argument contains elements that are not supported by the module.</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+    </TABLE>
+</body>
+</html>
diff --git a/tck/spi/SpecAssertions.html b/tck/spi/SpecAssertions.html
new file mode 100644
index 0000000..78a06de
--- /dev/null
+++ b/tck/spi/SpecAssertions.html
@@ -0,0 +1,4203 @@
+<html xmlns:Assertions="https://raw.githubusercontent.com/eclipse-ee4j/jakartaee-tck/master/internal/docs">
+<head>
+<META http-equiv="Content-Type" content="text/html; charset=UTF-8">
+<!--
+
+    Copyright (c) 2018, 2020 Oracle and/or its affiliates. All rights reserved.
+
+    This program and the accompanying materials are made available under the
+    terms of the Eclipse Public License v. 2.0, which is available at
+    http://www.eclipse.org/legal/epl-2.0.
+
+    This Source Code may also be made available under the following Secondary
+    Licenses when the conditions for such availability set forth in the
+    Eclipse Public License v. 2.0 are satisfied: GNU General Public License,
+    version 2 with the GNU Classpath Exception, which is available at
+    https://www.gnu.org/software/classpath/license.html.
+
+    SPDX-License-Identifier: EPL-2.0 OR GPL-2.0 WITH Classpath-exception-2.0
+
+-->
+
+<title>Specification Assertion Detail</title>
+</head>
+<body bgcolor="white">
+    <br>
+    <CENTER>
+        <h2>
+            Jakarta Authentication - 3.1.0<br> Specification Assertion Detail
+        </h2>
+    </CENTER>
+    <TABLE width="900" border="1" frame="box" cellpadding="5">
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Totals</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Total</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Active</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Deprecated</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Removed</FONT></TH>
+        <tr>
+            <TD align="center" valign="center"><font size="2PT"> # of Assertions </font></TD>
+            <TD align="center" valign="center"><font size="2PT">253</font></TD>
+            <TD align="center" valign="center"><font size="2PT">246</font></TD>
+            <TD align="center" valign="center"><font size="2PT">7</font></TD>
+            <TD align="center" valign="center"><font size="2PT">0</font></TD>
+        </tr>
+        <tr>
+            <TD align="center" valign="center"><font size="2PT"> # of Required Assertions </font></TD>
+            <TD align="center" valign="center"><font size="2PT">231</font></TD>
+            <TD align="center" valign="center"><font size="2PT">224</font></TD>
+            <TD align="center" valign="center"><font size="2PT">7</font></TD>
+            <TD align="center" valign="center"><font size="2PT">0</font></TD>
+        </tr>
+        <tr>
+            <TD align="center" valign="center"><font size="2PT"> # of Optional Assertions </font></TD>
+            <TD align="center" valign="center"><font size="2PT">22</font></TD>
+            <TD align="center" valign="center"><font size="2PT">22</font></TD>
+            <TD align="center" valign="center"><font size="2PT">0</font></TD>
+            <TD align="center" valign="center"><font size="2PT">0</font></TD>
+        </tr>
+    </TABLE>
+    <br>
+    <TABLE width="900" border="1" frame="box" cellpadding="5" summary="Specification Assertions">
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">ID</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Chapter</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Section</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Description</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Required</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Dependency</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Implementation Specific</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Defined by</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Status</FONT></TH>
+        <TH bgcolor="#BFBFBF"><FONT size="1PT">Testable</FONT></TH>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:1"></a><font size="1PT">JASPIC:SPEC:1</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A message processing runtime may acquire the
+                    authentication context objects that it uses to invoke authentication modules by interacting with an
+                    authentication context configuration object </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:2"></a><font size="1PT">JASPIC:SPEC:2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> An authentication context configuration
+                    object is an implementation of either the ClientAuthConfig or ServerAuthConfig interface as defined
+                    by this specification. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:3"></a><font size="1PT">JASPIC:SPEC:3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A message processing runtime may acquire
+                    authentication context configuration objects by interacting with a provider of authentication
+                    context configuration objects. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:4"></a><font size="1PT">JASPIC:SPEC:4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A message processing runtime may interact
+                    with the factory to obtain or establish the provider registered for an application context and
+                    messaging layer. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:5"></a><font size="1PT">JASPIC:SPEC:5</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.7</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Authentication modules should be implemented
+                    such that they may be invoked concurrently and such that they are able to apply and establish
+                    independent security identities for concurrent invocations. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:6"></a><font size="1PT">JASPIC:SPEC:6</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.7</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> In a multi-message authentication scenario,
+                    it is the responsibility of the authentication modules involved in the authentication to tie
+                    together or correlate the messages that comprise the authentication exchange. In addition to message
+                    correlation to tie to together the messages required to complete an authentication, message
+                    correlation may also be employed post-authentication such that a prior authentication result or
+                    session may be applied to a subsequent invocation. Modules are expected to perform their message
+                    correlation function based on the parameters of their invocation and with the benefit of any
+                    additional facilities provided by the invoking runtime (e.g., via their CallbackHandler). </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:7"></a><font size="1PT">JASPIC:SPEC:7</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A message processing runtime that wishes to
+                    invoke authentication modules configured according to this specification, must use the
+                    AuthConfigFactory.getFactory method to obtain a factory implementation. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:8"></a><font size="1PT">JASPIC:SPEC:8</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The runtime must invoke the getConfigProvider
+                    method of the factory to obtain the AuthConfigProvider. The runtime must specify appropriate
+                    (non-null) layer and application context identifiers in its call to getConfigProvider. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:9"></a><font size="1PT">JASPIC:SPEC:9</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A runtime may continue to reuse a provider
+                    for as long as it wishes. However, a runtime that wishes to be notified of changes to the factory
+                    that would cause the factory to return a different provider for the layer and appContext arguments
+                    should include a (non-null) RegistrationListener as an argument in the call used to acquire the
+                    provider. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:10"></a><font size="1PT">JASPIC:SPEC:10</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.1.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The factory implementation must satisfy the
+                    requirements defined by the AuthConfigFactory class. In particular, it must offer a public, zero
+                    argument constructor that supports the construction and registration of AuthConfigProvider objects
+                    from a persistent declarative representation. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:11"></a><font size="1PT">JASPIC:SPEC:11</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Once the runtime has obtained the appropriate
+                    (non-null) AuthConfigProvider, it must obtain from the provider the authentication context
+                    configuration object corresponding to the messaging layer, its role as client or server, and the
+                    application context for which it will be exchanging messages. It does this by invoking
+                    getClientAuthConfig or getServerAuthConfig as appropriate to the role of the runtime in the message
+                    exchange. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:12"></a><font size="1PT">JASPIC:SPEC:12</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A runtime operating at points 1 and 4 in the
+                    messaging model must invoke getClientAuthConfig to acquire its configuration object. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:13"></a><font size="1PT">JASPIC:SPEC:13</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A runtime operating at points 2 and 3 in the
+                    messaging model must invoke getServerAuthConfig to acquire its configuration object. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:14"></a><font size="1PT">JASPIC:SPEC:14</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The call to acquire the configuration object
+                    must specify the same values for layer and application context identifier that were used to acquire
+                    the provider </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:15"></a><font size="1PT">JASPIC:SPEC:15</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A runtime may continue to reuse an acquired
+                    authentication context configuration object for as long as it is acting as client or server of the
+                    corresponding application. A runtime should reacquire an authentication context configuration object
+                    when it is notified (via a RegistrationListener) that it must reacquire the AuthConfigProvider from
+                    which the configuration object was acquired (and after having reacquired the provider). </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:16"></a><font size="1PT">JASPIC:SPEC:16</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.2.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The provider implementation must satisfy the
+                    requirements defined by the AuthConfigProvider interface. In particular, it must return non-null
+                    authentication configuration objects. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:17"></a><font size="1PT">JASPIC:SPEC:17</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.2.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When the provider is a dynamic configuration
+                    provider, any change to the internal state of the provider occurring as the result of a call to its
+                    refresh method must be recognized by every authentication context configuration object obtained from
+                    the provider. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:18"></a><font size="1PT">JASPIC:SPEC:18</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.2.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The provider implementation must provide a
+                    configuration facility that may be used to configure the information required to initialize
+                    authentication contexts for the (one or more) authentication context configuration scopes (defined
+                    by layer and application context) for which the provider is registered (at the factory). </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:19"></a><font size="1PT">JASPIC:SPEC:19</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> At points (1) and (2) in the messaging model,
+                    the message processing runtime must obtain the authentication context identifier corresponding to
+                    the request message processing being performed by the runtime. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:20"></a><font size="1PT">JASPIC:SPEC:20</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The identifier may be acquired by calling the
+                    getOperation method of the authentication context configuration object (obtained in the preceding
+                    step). If the messaging runtime chooses to obtain the operation identifier by this means, it must
+                    provide a MessageInfo object as argument to the getOperation call, and the MessageInfo must have
+                    been initialized such that its getRequestMessage method will return the request message being
+                    processed by the runtime. The type of the returned request message must be as defined by the profile
+                    of this specification being followed by the messaging runtime. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:21"></a><font size="1PT">JASPIC:SPEC:21</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Alternatively and depending on the
+                    requirements relating to operation identifier inherent in the profile being followed by the
+                    messaging runtime, the runtime may obtain the operation identifier by other means. Where a profile
+                    defines or facilitates other means by which a messaging runtime may acquire the operation
+                    identifier, the identifier acquired by any such means must be equivalent to the identifier that
+                    would be acquired by calling getOperation as described above. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:22"></a><font size="1PT">JASPIC:SPEC:22</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.3.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The configuration implementation must satisfy
+                    the requirements defined by the AuthConfig interface with respect to the getOperation method. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:23"></a><font size="1PT">JASPIC:SPEC:23</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> At points (1) and (2) in the messaging model,
+                    the message processing runtime must invoke the getAuthContext method of the authentication context
+                    configuration object (obtained in step 2) to obtain the authentication context object corresponding
+                    to the message that is to be processed. This is accomplished by invoking getAuthContext with the
+                    operation/message identifier corresponding to the request message and obtained as described above. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:24"></a><font size="1PT">JASPIC:SPEC:24</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If required by the profile of this
+                    specification being followed by the runtime, the call to getAuthContext must pass a Map containing
+                    the required property elements. The value of the Subject argument provided by the runtime in its
+                    call to getAuthContext must correpond to the requirements of the profile of this specification being
+                    followed by the runtime. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:25"></a><font size="1PT">JASPIC:SPEC:25</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Once an authentication context is acquired,
+                    it may be reused to process subsequent requests of the application for which an equivalent
+                    authentication context identifier, Subject, and properties Map (as used in the getAuthContext)
+                    applies. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:26"></a><font size="1PT">JASPIC:SPEC:26</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Runtimes that wish to be dynamic with respect
+                    to changes in context configuration, should call getAuthContext for every request. An authentication
+                    context configuration object may return the same authentication context object for different
+                    authentication context identifiers for which the same module configuration and message protection
+                    policy applies. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:27"></a><font size="1PT">JASPIC:SPEC:27</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> At points (3) and (4) in the messaging model,
+                    the runtime may repeat the context acquisition performed at point (2) and (1) respectively, or it
+                    may reuse the previously acquired context. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:28"></a><font size="1PT">JASPIC:SPEC:28</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The configuration implementation must satisfy
+                    the requirements defined by the corresponding ClientAuthConfig or ServerAuthConfig interface with
+                    respect to the getAuthContext method. In this regard, the configuration implementation must
+                    determine the authentication modules that are to comprise the acquired context, and it must provide
+                    the context implementation with sufficient information to initialize the modules of the context. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:29"></a><font size="1PT">JASPIC:SPEC:29</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The getAuthContext method must return null
+                    when no authentication modules are to be invoked for an identified authentication context at the
+                    layer and application context represented by the configuration object </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:30"></a><font size="1PT">JASPIC:SPEC:30</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The AuthConfigProvider from which the
+                    authentication context configuration object was acquired must provide a configuration facility by
+                    which the information required to initialize authentication contexts may be configured and
+                    associated with one or more authentication context identifiers within the (one or more) layer and
+                    application context scopes for which the provider is registered (at the factory). </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:31"></a><font size="1PT">JASPIC:SPEC:31</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Every context implementation must satisfy the
+                    requirements as defined by the corresponding ClientAuthContext or ServerAuthContext interface. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:32"></a><font size="1PT">JASPIC:SPEC:32</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Every context must delegate calls made to the
+                    methods of its corresponding ClientAuth or ServerAuth interface to the corresponding methods of its
+                    one or more authentication modules. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:33"></a><font size="1PT">JASPIC:SPEC:33</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When a context encapsulates multiple
+                    authentication modules, the context must embody the control logic to determine which modules of the
+                    context are to be invoked and in what order. Contexts which encapsulate alternative sufficient
+                    modules, must ensure that the same message values are passed to each invoked alternative of the
+                    context. When a context invokes multiple authentication modules, the context must combine the
+                    AuthStatus values returned by the invoked authentication modules to establish the AuthStatus value
+                    returned by the context to the messaging runtime. The context implementation must define the logic
+                    for combining the returned AuthStatus values. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:34"></a><font size="1PT">JASPIC:SPEC:34</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If a non-null authentication context object
+                    is returned by getAuthContext, the corresponding message processing runtime must invoke the methods
+                    of the acquired authentication context to process the corresponding request and response messages as
+                    defined below. Otherwise, the message processing runtime, must proceed with its normal processing of
+                    the corresponding messages and without invoking the methods of an authentication context object. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:35"></a><font size="1PT">JASPIC:SPEC:35</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> At point (1) in the message processing model
+                    : the message processing runtime must call the secureRequest method of the ClientAuthContext. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:36"></a><font size="1PT">JASPIC:SPEC:36</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> (At point 1 in message processing model) The
+                    messageInfo argument to the call must have been initialized such that its getRequestMessage method
+                    will return the request message being processed by the runtime. The type of the returned request
+                    message must be as defined by the profile being followed. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:37"></a><font size="1PT">JASPIC:SPEC:37</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> (At point 1 in message processing model) If a
+                    non-null Subject was used to acquire the ClientAuthContext, the same Subject must be passed as the
+                    clientSubject in this call. If a non-null clientSubject is used in this call, it must not be
+                    read-only, and the same clientSubject argument must be passed in all calls to validateResponse made
+                    for the one or more responses processed to complete the message exchange. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:38"></a><font size="1PT">JASPIC:SPEC:38</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> (At point 1 in message processing model) If
+                    the call to secureRequest returns: AuthStatus.SEND_SUCCESS - the runtime should send (without
+                    calling secureRequest) the request message acquired by calling messageInfo.getRequestMessage. After
+                    sending the request, the runtime should proceed to point (4) in the message processing model (to
+                    receive and validate the response). </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:39"></a><font size="1PT">JASPIC:SPEC:39</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> (At point 1 in message processing model) If
+                    the call to secureRequest returns: AuthStatus.SEND_CONTINUE - the module has returned, in
+                    messageInfo, an initial request message to be sent. Moreover, the module is informing the client
+                    runtime that it will be required to continue the message dialog by sending the message resulting
+                    from validation of the response to the initial message. If the runtime will be unable to continue
+                    the dialog by sending the message resulting from validation of the response, the runtime must not
+                    send the initial request and it must convey its inability by returning an error to the client
+                    application. Otherwise, the runtime should send (without calling secureRequest) the request message
+                    acquired by calling messageInfo.getRequestMessage. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:40"></a><font size="1PT">JASPIC:SPEC:40</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> (At point 1 in message processing model) If
+                    the call to validateRequest returns: AuthStatus.FAILURE (Befor service Invocation) - The runtime
+                    should return an error to the client application. The runtime should derive the returned error from
+                    the response message acquired by calling messageInfo.getResponseMessage. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:41"></a><font size="1PT">JASPIC:SPEC:41</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> (At point 1 in message processing model) If
+                    the call to secureRequest throws an AuthException - the runtime should use the exception to convey
+                    to the client runtime that the request failed. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:42"></a><font size="1PT">JASPIC:SPEC:42</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> At point (4) in the message processing model:
+                    the message processing runtime must call the validateResponse method of the ClientAuthContext. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:43"></a><font size="1PT">JASPIC:SPEC:43</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> In the call made to validateResponse, the
+                    runtime must pass the same MessageInfo instance that was passed to secureRequest (at the start of
+                    the message exchange). The messageInfo argument must have been initialized such that its
+                    getResponseMessage method will return the response message being processed by the runtime.The type
+                    of the required return messages must be as defined by the profile being followed. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:44"></a><font size="1PT">JASPIC:SPEC:44</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The value of the clientSubject argument to
+                    the (validateResponse) call must be the same as that passed in the call to secureRequest for the
+                    corresponding request. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:45"></a><font size="1PT">JASPIC:SPEC:45</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The serviceSubject argument to the
+                    (validateResponse) call may be non-null, in which it may be used by modules to store Principals and
+                    credentials determined to pertain to the source of the response. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:46"></a><font size="1PT">JASPIC:SPEC:46</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the call to validateResponse returns:
+                    AuthStatus.SUCCESS - The runtime should use the response message acquired by calling
+                    messageInfo.getResponseMessage.to create the return value to be returned to the client. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:47"></a><font size="1PT">JASPIC:SPEC:47</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the call to validateResponse returns:
+                    AuthStatus.SEND_CONTINUE - if the runtime it is unable to process this status value it must return
+                    an error to the client application indicating its inability to process this status value. To process
+                    this status value, the runtime must send (without calling secureRequest) the (continuation) request
+                    message obtained by calling messageInfo.getRequestMessage, and it must receive and process via
+                    validateResponse (at least) the next corresponding response or error (before returning a value to
+                    the client). </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:48"></a><font size="1PT">JASPIC:SPEC:48</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the call to validateResponse returns:
+                    AuthStatus.FAILURE- the runtime should return an error to the client application. The runtime should
+                    derive the returned error from the response message acquired by calling
+                    messageInfo.getResponseMessage. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:49"></a><font size="1PT">JASPIC:SPEC:49</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the call to validateResponse throws an
+                    AuthException - runtime should use the exception to convey to the client runtime that the request
+                    failed. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:50"></a><font size="1PT">JASPIC:SPEC:50</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> At point (2) in the message processing model:
+                    the message processing runtime must call the validateRequest method of the ServerAuthContext. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:51"></a><font size="1PT">JASPIC:SPEC:51</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> (at point 2 in MPR model) The messageInfo
+                    argument to the call must have been initialized such that its getRequestMessage method will return
+                    the request message being processed by the runtime. For some profiles of this specification, the
+                    runtime must also initialize messageInfo such that its getResponseMessage method will return the
+                    response message being processed by the runtime. The type of the required return messages must be as
+                    defined by the profile being followed. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:52"></a><font size="1PT">JASPIC:SPEC:52</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> (At point (2) in the message processing
+                    model) The clientSubject argument must be non-null and it must not be read-only. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:53"></a><font size="1PT">JASPIC:SPEC:53</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> (At point (2) in the message processing
+                    model) If a non-null Subject was used to acquire the ServerAuthContext, the same Subject must be
+                    passed as the serviceSubject in this call. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:313"></a><font size="1PT">JASPIC:SPEC:313</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> (At point (2) in the message processing
+                    model) If a non-null serviceSubject is used in this call, it must not be read-only. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:314"></a><font size="1PT">JASPIC:SPEC:314</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> (At point (2) in the message processing
+                    model) the same serviceSubject must be passed in the call to secureResponse for the corresponding
+                    response (if there is one). </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:54"></a><font size="1PT">JASPIC:SPEC:54</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the call to validateRequest returns:
+                    AuthStatus.SUCCESS - the runtime should proceed to authorize the request using the clientSubject,
+                    perform the application request processing (depending on the authorization result), and proceed to
+                    point (3) as appropriate. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:55"></a><font size="1PT">JASPIC:SPEC:55</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the call to validateRequest returns:
+                    AuthStatus.SEND_SUCCESS - The runtime must NOT proceed to authorize the request or perform the
+                    application request processing. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:56"></a><font size="1PT">JASPIC:SPEC:56</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the call to validateRequest returns:
+                    AuthStatus.SEND_CONTINUE - The runtime must NOT proceed to authorize the request or perform the
+                    application request processing. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:57"></a><font size="1PT">JASPIC:SPEC:57</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the call to validateRequest returns:
+                    AuthStatus.SEND_FAILURE - (If the failure occurred after the service invocation), the runtime must
+                    perform whatever processing it requires to complete the processing of a request that failed after a
+                    successful service invocation, and prior to communicating the invocation result to the client
+                    runtime. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:315"></a><font size="1PT">JASPIC:SPEC:315</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the call to validateRequest returns:
+                    AuthStatus.SEND_FAILURE - (If the failure occurred befor the service invocation), the runtime must
+                    NOT proceed to authorize the request or perform the application request processing. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:58"></a><font size="1PT">JASPIC:SPEC:58</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the call to validateRequest throws an
+                    AuthException (Befor Service Invocation) - the runtime must NOT proceed to authorize the request or
+                    perform the application request processing. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:316"></a><font size="1PT">JASPIC:SPEC:316</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the call to validateRequest throws an
+                    AuthException - (If the failure occurred after the service invocation) the runtime must perform
+                    whatever processing it requires to complete the processing of a request that failed after a
+                    successful service invocation, and prior to communicating the invocation result to the client
+                    runtime. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:59"></a><font size="1PT">JASPIC:SPEC:59</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> At point (3) in the message processing model:
+                    the message processing runtime must call the secureResponse method of the ServerAuthContext. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:60"></a><font size="1PT">JASPIC:SPEC:60</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> In the call made to secureResponse, the
+                    runtime must pass the same MessageInfo instance that was passed to validateRequest (for the
+                    corresponding request message). The messageInfo argument must have been initialized such that its
+                    getResponseMessage method will return the response message being processed by the runtime. The type
+                    of the required return messages must be as defined by the profile being followed. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:61"></a><font size="1PT">JASPIC:SPEC:61</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The value of the serviceSubject argument to
+                    the (secureResponse) call must be the same as that passed in the call to validateRequest for the
+                    corresponding request. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:62"></a><font size="1PT">JASPIC:SPEC:62</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the call to secureResponse returns:
+                    AuthStatus.SEND_SUCCESS - the runtime should send (without calling secureResponse) the response
+                    message acquired by calling messageInfo.getResponseMessage at which time, the processing of the
+                    application request and its corresponding response will be complete. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:63"></a><font size="1PT">JASPIC:SPEC:63</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the call to secureResponse returns:
+                    AuthStatus.SEND_CONTINUE - the runtime should send (without calling secureResponse) the response
+                    message acquired by calling messageInfo.getResponseMessage. The processing of the response is not
+                    finished, and as such, its outcome is not yet known. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:64"></a><font size="1PT">JASPIC:SPEC:64</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the call to secureResponse returns:
+                    AuthStatus.SEND_FAILURE - the runtime must perform whatever processing it requires to complete the
+                    processing of a request that failed after (or during) service invocation, and prior to communicating
+                    the invocation result to the client runtime. This may include sending (without calling
+                    secureResponse) the response message acquired by calling messageInfo.getResponseMessage. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:65"></a><font size="1PT">JASPIC:SPEC:65</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the call to secureResponse throws an
+                    AuthException - the runtime must perform whatever processing it requires to complete the processing
+                    of a request that failed after (or during) service invocation, and prior to communicating the
+                    invocation result to the client runtime. the runtime may send (without calling secureResponse) an
+                    appropriate response message of its choice. if a failure message is returned, it should indicate
+                    that the failure in request processing occurred after the successful invocation of the service. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:66"></a><font size="1PT">JASPIC:SPEC:66</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The authentication module implementations
+                    within the context must satisfy the requirements as defined by the corresponding ClientAuthModule or
+                    ServerAuthModule interface. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:67"></a><font size="1PT">JASPIC:SPEC:67</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The message layer value used to select the
+                    AuthConfigProvider and ServerAuthConfig objects for this (servlet) profile must be HttpServlet </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:68"></a><font size="1PT">JASPIC:SPEC:68</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The application context identifier (that is,
+                    the appContext parameter value) used to select the AuthConfigProvider and ServerAuthConfig objects
+                    for a specific application shall be the String value constructed by concatenating the host name, a
+                    blank separator character, and the decoded context path corresponding to the web module. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:69"></a><font size="1PT">JASPIC:SPEC:69</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The MessageInfo argument used in any call
+                    made by the message processing runtime to validateRequest or secureResponse must have been
+                    initialized such that the non-null objects returned by the getRequestMessage and getResponseMessage
+                    methods of the MessageInfo are an instanceof HttpServletRequest and HttpServletResponse,
+                    respectively. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:70"></a><font size="1PT">JASPIC:SPEC:70</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The getSupportedMessageTypes method of all
+                    authentication modules integrated for use with this profile, must include
+                    jakarta.servlet.http.HttpServletRequest.class and jakarta.servlet.http.HttpServeletResponse.class in
+                    its return value. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:71"></a><font size="1PT">JASPIC:SPEC:71</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The CallbackHandler passed to
+                    ServerAuthModule.initialize is determined by the handler argument passed in the
+                    AuthConfigProvider.getServerAuthConfig call that acquired the corresponding authentication context
+                    configuration object. The handler argument must not be null. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:72"></a><font size="1PT">JASPIC:SPEC:72</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The CallbackHandler passed to
+                    ServerAuthModule.initialize must support the following callbacks: CallerPrincipalCallback,
+                    GroupPrincipalCallback, PasswordValidationCallback. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:73"></a><font size="1PT">JASPIC:SPEC:73</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The argument handler and the CallbackHandler
+                    passed through to the authentication modules must be initialized with any application context
+                    required to process its supported callbacks on behalf of the corresponding application. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:318"></a><font size="1PT">JASPIC:SPEC:318</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The factory implementation returned by
+                    calling the getFactory method of the abstract AuthConfigFactory class must have been configured such
+                    that it returns a non-null AuthConfigProvider for those application contexts for which pluggable
+                    authentication modules have been configured at the ?HttpServlet? layer. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:74"></a><font size="1PT">JASPIC:SPEC:74</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> For each application context for which it is
+                    servicing requests, the runtime must call getConfigProvider to acquire the provider object
+                    corresponding to the layer and application context. The layer and appContext arguments to
+                    getConfigProvider must be as defined in Section 3.1, Message Layer Identifier and Section 3.2,
+                    Application Context Identifier respectively </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:75"></a><font size="1PT">JASPIC:SPEC:75</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If a non-null AuthConfigProvider is returned,
+                    the messaging runtime must call getServerAuthConfig on the provider to obtain the authentication
+                    context configuration object pertaining to the application context at the layer. The layer and
+                    appContext arguments of the call to getServerAuthConfig must be the same as those used to acquire
+                    the provider, and the handler argument must be as defined in Section 3.5, CallbackHandler
+                    Requirements. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:76"></a><font size="1PT">JASPIC:SPEC:76</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A null return value from getConfigProvider
+                    indicates that pluggable authentication modules have not been configured at the layer for the
+                    application context and that the messaging runtime must proceed to perform its servlet security
+                    constraint processing without reliance on this profile. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:77"></a><font size="1PT">JASPIC:SPEC:77</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">7</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When a non-null AuthConfigProvider is
+                    returned by the factory, the provider must have been configured with the information required to
+                    initialize the authentication contexts for the (one or more) authentication context configuration
+                    scopes (defined by layer and application context) for which the provider is registered (at the
+                    factory). </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:78"></a><font size="1PT">JASPIC:SPEC:78</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">7</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When a non-null AuthConfigProvider is
+                    returned by the factory, the messaging runtime must call getAuthContext on the authentication
+                    context configuration object (obtained from the provider). </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:79"></a><font size="1PT">JASPIC:SPEC:79</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">7</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> For all values of the authContextID argument
+                    that satisfy the requirements of Section 3.7.1, the call to getAuthContext must return a non-null
+                    authentication context. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:80"></a><font size="1PT">JASPIC:SPEC:80</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">7.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> the authentication context identifier used in
+                    the call to getAuthContext must be equivalent to the value that would be acquired by calling
+                    getAuthContextID with the MessageInfo that will be used in the call to validateRequest. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:81"></a><font size="1PT">JASPIC:SPEC:81</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">7.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A null value may be passed as the Subject
+                    argument in the getAuthContext call. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:300"></a><font size="1PT">JASPIC:SPEC:300</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">7.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the runtime is a Jakarta Authorization compatible
+                    Servlet container, the properties argument passed in all calls to getAuthContext must contain the
+                    following key-value pair: (key) jakarta.security.jacc.PolicyContext (value) The PolicyContext
+                    identifier value that the container must set. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:83"></a><font size="1PT">JASPIC:SPEC:83</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">7.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When the runtime is not a Jakarta Authorization compatible
+                    Servlet container, the properties argument used in all calls to getAuthContext must not include a
+                    jakarta.security.jacc.PolicyContext key-value pair, and a null value may be passed for the
+                    properties argument. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:84"></a><font size="1PT">JASPIC:SPEC:84</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">7.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Each ServerAuthContext obtained via
+                    getAuthContext must initialize its encapsulated ServerAuthModule objects with a non-null value for
+                    requestPolicy. The encapsulated authentication modules may be initialized with a null value for
+                    responsePolicy. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:85"></a><font size="1PT">JASPIC:SPEC:85</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">7.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The requestPolicy used to initialize the
+                    authentication modules of the ServerAuthContext must be constructed such that the value obtained by
+                    calling isMandatory on the requestPolicy accurately reflects whether (i.e., true return value) or
+                    not (i.e, false return value) authentication is required to access the web resource corresponding to
+                    the HttpServletRequest to which the ServerAuthContext will be applied. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:86"></a><font size="1PT">JASPIC:SPEC:86</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">7.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The message processing runtime is responsible
+                    for determining if authentication is required and must convey the results of its determination as
+                    described in Section 3.8.1, 'MessageInfo Requirements,' on page 29. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:87"></a><font size="1PT">JASPIC:SPEC:87</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">7.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Calling getTargetPolicies on the request
+                    MessagePolicy must return an array containing at least one TargetPolicy whose ProtectionPolicy will
+                    be interpreted by the modules of the context to mean that the source of the corresponding targets
+                    within the message is to be authenticated. To that end, calling the getID method on the
+                    ProtectionPolicy must return one of the following values: ProtectionPolicy.AUTHENTICATE_SENDER,
+                    ProtectionPolicy.AUTHENTICATE_CONTENT </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:88"></a><font size="1PT">JASPIC:SPEC:88</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> At point (2) in the message processing model,
+                    the runtime must call validateRequest on the ServerAuthContext. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:89"></a><font size="1PT">JASPIC:SPEC:89</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the request has satisfied the connection
+                    requirements, the message processing runtime must call validateRequest independent of whether or not
+                    access to the resource would be authorized prior to the call to validateRequest. validateRequest
+                    must be called for all requests, including requests to a form-based login form. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:90"></a><font size="1PT">JASPIC:SPEC:90</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the call to validateRequest returns
+                    AuthStatus.SUCCESS, the runtime must establish return values for getUserPrincipal, getRemoteUser,
+                    and getAuthType as defined in Section 3.8.4. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:301"></a><font size="1PT">JASPIC:SPEC:301</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the applicable requestPolicy indicates
+                    that authentication is NOT required, the runtime may choose to continue the invocation of the
+                    resource under the runtime?s representation of the unauthenticated caller identity. A runtime must
+                    not choose to continue the invocation if the HttpServletResponse.isCommitted() returns true. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:91"></a><font size="1PT">JASPIC:SPEC:91</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> In a Jakarta Authorization compatible runtime, the identity
+                    must be comprised of exactly the Principal objects of the clientSubject. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:92"></a><font size="1PT">JASPIC:SPEC:92</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> In a non-Jakarta Authorization compatible Servlet runtime,
+                    the identity must include the caller Principal (established during the validateRequest processing
+                    using the corresponding CallerPrincipalCallback). (and may include any of the Principal objects of
+                    the clientSubject.) </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:93"></a><font size="1PT">JASPIC:SPEC:93</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the request is not authorized, the runtime
+                    must return the HTTP status code required by the Servlet spec. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:317"></a><font size="1PT">JASPIC:SPEC:317</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The request must be dispatched to the
+                    resource if the request was determined to be authorized; otherwise it must NOT be dispatched and the
+                    runtime must proceed to point (3) in the message processing model. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:302"></a><font size="1PT">JASPIC:SPEC:302</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the request is dispatched to the resource
+                    and the resource invocation throws an exception to the runtime, the runtime must set, within the
+                    response, an HTTP status code which satisfies any applicable requirements defined within the servlet
+                    specification. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:303"></a><font size="1PT">JASPIC:SPEC:303</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the request is dispatched to the resource,
+                    and the resource was configured to run-as its caller, then for invocations originating from the
+                    resource where caller propagation is required, the identity established using the
+                    CallerPrincipalCallback must be used as the propagated identity </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:94"></a><font size="1PT">JASPIC:SPEC:94</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The call to secureResponse must not be made
+                    if the resource throws an exception to the calling runtime. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:304"></a><font size="1PT">JASPIC:SPEC:304</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If invocation of the resource completes
+                    without throwing an exception, the runtime must proceed to point (3) in the message processing
+                    model. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:305"></a><font size="1PT">JASPIC:SPEC:305</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> At point (3) in the message processing model,
+                    the runtime must call secureResponse on the same ServerAuthContext used in the corresponding call to
+                    validateRequest and with the same MessageInfo object. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:95"></a><font size="1PT">JASPIC:SPEC:95</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The messageInfo argument used in the call to
+                    validateRequest must have been initialized by the runtime such that its getRequestMessage and
+                    getResponseMessage methods will return the HttpServletRequest and HttpServletResponse objects
+                    corresponding to the messages (respectively) being processed by the runtime. This must be the case
+                    even when the target of the request is a static page (that is, not a servlet). </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:306"></a><font size="1PT">JASPIC:SPEC:306</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.1.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> This profile requires that the message
+                    processing runtime conditionally establish the following key-value pair within the Map of the
+                    MessageInfo object passed in the calls to getAuthContextID, validateRequest, and secureResponse.
+                    (key) jakarta.security.auth.message.MessagePolicy.isMandatory (val) Any non-null String value, s,
+                    for which Boolean.valueOf(s).booleanValue() == true. The MessageInfo map must contain this key and
+                    its associated value, if and only if authentication is required to perform the resource access
+                    corresponding to the HttpServletRequest to which the ServerAuthContext will be applied. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:307"></a><font size="1PT">JASPIC:SPEC:307</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.1.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Authentication is required if use of the HTTP
+                    method of the HttpServletRequest at the resource identified by the HttpServletRequest is covered by
+                    a Servlet auth-constraint, or in a Jakarta Authorization compatible runtime, if the corresponding
+                    WebResourcePermission is NOT granted2 to an unauthenticated caller </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:319"></a><font size="1PT">JASPIC:SPEC:319</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.1.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> In a Jakarta Authorization compatible runtime, the
+                    corresponding WebResourcePermission may be constructed directly from the HttpServletRequest as
+                    follows: public WebResourcePermission(HttpServletRequest request); The authentication context
+                    configuration system must use the value of this property to establish the corresponding value within
+                    the requestPolicy passed to the authentication modules of the ServerAuthContext acquired to process
+                    the MessageInfo.t </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:96"></a><font size="1PT">JASPIC:SPEC:96</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A new clientSubject must be instantiated and
+                    passed in the call to validateRequest. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:97"></a><font size="1PT">JASPIC:SPEC:97</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> validateRequest may be called either before
+                    the service invocation (to establish the caller identity) or after the service invocation (when a
+                    multi-message dialog is required to secure the response). The module implementation is responsible
+                    for recording any state and performing any processing required to differentiate these two different
+                    types of calls to validateRequest. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:98"></a><font size="1PT">JASPIC:SPEC:98</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.3.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When validateRequest is called before the
+                    service invocation on a module initialized with a mandatory requestPolicy (as defined by the return
+                    value from requestPolicy.isMandatory()), the module must only return AuthStatus.SUCCESS if it was
+                    able to completely satisfy the request authentication policy. In this case, the module (or its
+                    context) must also have used the CallbackHandler passed to it by the runtime to handle a
+                    CallerPrincipalCallback using the clientSubject as argument to the callback. If more than one module
+                    of a context uses the CallbackHandler to handle this callback, the context is responsible for
+                    coordinating the calls such that the appropriate caller principal value is established. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:99"></a><font size="1PT">JASPIC:SPEC:99</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.3.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the module was not able to completely
+                    satisfy the request authentication policy, it must: return AuthStatus.SEND_CONTINUE - if it has
+                    established a response (available to the runtime by calling messageInfo.getResponseMessage) that
+                    must be sent by the runtime for the request validation to be effectively continued by the client.
+                    The module must have set the HTTP status code of the response to a value (e.g., HTTP 401
+                    unauthorized, HTTP 303 see other, or HTTP 307 temporary redirect) that will indicate to the client
+                    that it should retry the request. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:100"></a><font size="1PT">JASPIC:SPEC:100</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.3.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the module was not able to completely
+                    satisfy the request authentication policy, it must: return AuthStatus.SEND_FAILURE - if the request
+                    validation failed, and when the client should not retry the request. The module must have
+                    established a response message (available to the runtime by calling messageInfo.getResponseMessage)
+                    that may be sent by the runtime to inform the client that the request failed. The module must have
+                    set the HTTP status code of the response to a value (e.g., HTTP 403 forbidden or HTTP 404 not found)
+                    that will indicate to the client that it should NOT retry the request. The runtime may choose not to
+                    send a response message, or to send a different response message (given that it also contains an
+                    analogous HTTP status code). </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:101"></a><font size="1PT">JASPIC:SPEC:101</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.3.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the module was not able to completely
+                    satisfy the request authentication policy, it must: throw an AuthException - if the request
+                    validation failed, and when the client should not retry the request, and when the module has not
+                    defined a response, to be sent by the runtime. If the runtime chooses to send a response, it must
+                    define the HTTP status code and descriptive content (of the response). The HTTP status code of the
+                    response must indicate to the client (e.g., HTTP 403 forbidden, HTTP 404 not found, or HTTP 500
+                    internal server error) that the request failed and that it should NOT be retried. The decriptive
+                    content set in the response may be obtained from the AuthException. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:102"></a><font size="1PT">JASPIC:SPEC:102</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.3.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When validateRequest is called before the
+                    service invocation on a module that was initialized with an optional requestPolicy (i.e.,
+                    requestPolicy.isMandatory() returns false), the module should attempt to satisfy the request
+                    authentication policy, but it must do so without requiring additional messages or interactions
+                    involving the client. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:103"></a><font size="1PT">JASPIC:SPEC:103</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.3.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the module returns AuthStatus.SUCCESS (and
+                    the authentication policy was satisfied), the module (or its context) must employ a
+                    CallerPrincipalCallback. If the authentication policy was not satisfied, and yet the module chooses
+                    to return AuthStatus.SUCCESS, the module (or its context) must use a CallerPrincipalCallback to
+                    establish the containers representation of the unauthenticated caller within the clientSubject. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:320"></a><font size="1PT">JASPIC:SPEC:320</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.3.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the module throws an AuthException, or
+                    returns any value other that AuthStatus.SUCCESS, the runtime must NOT proceed to the service
+                    invocation. The runtime must process an AuthException as described above for a request with a
+                    mandatory requestPolicy. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:104"></a><font size="1PT">JASPIC:SPEC:104</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.3.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When validateRequest is called after the
+                    service invocation, the module must return AuthStatus.SEND_SUCCESS when the module has successfully
+                    secured the application response message and made it available through
+                    messageInfo.getResponseMessage. The module must have set the HTTP status code within the response to
+                    HTTP 200 (OK). For the request to be successfully completed, the runtime must send the response
+                    message returned by the module. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:105"></a><font size="1PT">JASPIC:SPEC:105</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.3.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the module returns
+                    AuthStatus.SEND_FAILURE, it must have established a response message in messageInfo, and it must
+                    have set the HTTP status code within the response to HTTP 500 (internal server error). The runtime
+                    may choose not to send a response message, or to send a different response message (given that it
+                    also contains an HTTP 500 status code). </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:106"></a><font size="1PT">JASPIC:SPEC:106</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.3.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When the module throws an AuthException, the
+                    runtime may chose not to send a response. If the runtime sends a response, the runtime must set the
+                    HTTP status code to HTTP 500 (internal server error), and the runtime must define the decriptive
+                    content of the response (perhaps by obtaining it from the AuthException). </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:107"></a><font size="1PT">JASPIC:SPEC:107</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.3.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The module must return
+                    AuthStatus.SEND_CONTINUE if the response dialog is to continue. This status value is used to inform
+                    the calling runtime that, to successfully complete the response processing, it will need to be
+                    capable of continuing the message dialog by processing at least one additional request/response
+                    exchange (after having sent the response message returned in messageInfo). The module must have
+                    established (in messageInfo) a response message that will cause the client to continue the response
+                    processing (i.e., retry the request). For the response processing to be successfully completed, the
+                    runtime must send the response message returned by the module. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:108"></a><font size="1PT">JASPIC:SPEC:108</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.3.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When secureResponse is called on a module
+                    that was initialized with an undefined responsePolicy (i.e., responsePolicy == null), the module
+                    must return AuthStatus.SUCCESS. Otherwise, the AuthStatus return value and AuthException semantics
+                    of secureResponse are as defined in Section 3.8.3.2, validateRequest After Service Invocation. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:308"></a><font size="1PT">JASPIC:SPEC:308</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.3.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A ServerAuthModule must only call
+                    MessageInfo.setResponseMessage() to wrap or unwrap the existing response within MessageInfo. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:309"></a><font size="1PT">JASPIC:SPEC:309</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.3.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> During secureResponse processing, a
+                    ServerAuthModule must unwrap the messages in MessageInfo that it wrapped during its validateRequest
+                    processing. The unwrapped values must be established in MessageInfo when secureResponse returns. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:310"></a><font size="1PT">JASPIC:SPEC:310</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.3.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> During validateRequest processing, a
+                    ServerAuthModule must NOT unwrap a message in MessageInfo, and must NOT establish a wrapped message
+                    in MessageInfo unless the ServerAuthModule returns AuthStatus.SUCCESS. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:311"></a><font size="1PT">JASPIC:SPEC:311</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.3.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When a ServerAuthModule returns a wrapped
+                    message in MessageInfo, or unwraps a message in MessageInfo, the message processing runtime must
+                    ensure that the HttpServletRequest and HttpServletResponse objects established by the
+                    ServerAuthModule are used in downstream processing. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:321"></a><font size="1PT">JASPIC:SPEC:321</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The message processing runtime must fulfill
+                    the requirements defined in this section when, at point (2) in the messaging model, validateRequest
+                    returns AuthStatus.SUCCESS. In this case, the runtime must modify the HttpServletRequest as
+                    necessary to ensure that the Principal returned by getUserPrincipal and the String returned by
+                    getRemoteUser correspond, respectively, to the Principal established by validateRequest (via the
+                    CallerPrincipalCallback) and to the String obtained by calling getName on the established Principal.
+                    (Except when getUserPrincipal returns null; in which case the value returned by getRemoteUser must
+                    be null) </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:322"></a><font size="1PT">JASPIC:SPEC:322</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The runtime must also ensure that the value
+                    returned by calling getAuthType on the HttpServletRequest is consistent in terms of being null or
+                    non-null with the value returned by getUserPrincipal. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:323"></a><font size="1PT">JASPIC:SPEC:323</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When getAuthType is to return a non-null
+                    value, the runtime must consult the Map of the MessageInfo object used in the call to
+                    validateRequest to determine if it contains an entry for the key identified in the following table.
+                    If the Map contains an entry for the key, the runtime must obtain (from the Map) the value
+                    corresponding to the key and establish it as the getAuthType return value. (from Table 2-2, the
+                    key=jakarta.servlet.http.authType and the value=a non-null String value) </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:324"></a><font size="1PT">JASPIC:SPEC:324</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> (When getAuthType is to return a non-null
+                    value, the runtime must consult the Map of the MessageInfo object used in the call to
+                    validateRequest to determine if it contains an entry for the key identified in the following table.)
+                    If the Map does not contain an entry for the key, and an auth-method is defined in the login-config
+                    element of the deployment descriptor for the web application, the runtime must establish the value
+                    from the auth-method as the value returned by getAuthType. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:325"></a><font size="1PT">JASPIC:SPEC:325</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> (When getAuthType is to return a non-null
+                    value, the runtime must consult the Map of the MessageInfo object used in the call to
+                    validateRequest to determine if it contains an entry for the key identified in the following table.)
+                    If the Map does not contain an entry for the key, and the deployment descriptor does not define an
+                    auth-method, the runtime must establish a non-null value of its choice as the value returned by
+                    getAuthType. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:109"></a><font size="1PT">JASPIC:SPEC:109</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">0</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> This profile is composed of two internal
+                    profiles that partition the requirements of the profile into those that must be satisfied by client
+                    runtimes and those that must be satisfied by server runtimes. This profile is equally applicable to
+                    SOAP versions 1.1 and 1.2. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:110"></a><font size="1PT">JASPIC:SPEC:110</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The message layer value used to select the
+                    AuthConfigProvider and ServerAuthConfig objects for this profile must be SOAP </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:111"></a><font size="1PT">JASPIC:SPEC:111</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The application context identifier (i.e., the
+                    appContext parameter value) used by a client runtime to select the AuthConfigProvider,
+                    ClientAuthConfig objects pertaining to a client-side application context configuration scope must be
+                    as defined in Section 4.8.1. Similarly the application context identifier used by a server runtime
+                    to select the AuthConfigProvider and ClientAuthConfig objects pertaining to an server-side
+                    application context configuration scope must be defined in Section 4.9.1 </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:112"></a><font size="1PT">JASPIC:SPEC:112</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The MessageInfo argument used in any call
+                    made by the message processing runtime to secureRequest, validateResponse, validateRequest, or
+                    secureResponse must have been initialized such that the non-null objects returned by the
+                    getRequestMessage and getResponseMessage methods of the MessageInfo are an instanceof
+                    jakarta.xml.soap.SOAPMessage. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:113"></a><font size="1PT">JASPIC:SPEC:113</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The getSupportedMessageTypes method of all
+                    authentication modules integrated for use with this profile, must include
+                    jakarta.xml.soap.SOAPMessage.class in its return value. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:114"></a><font size="1PT">JASPIC:SPEC:114</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The CallbackHandler passed to an
+                    authentication module's initialize method is determined by the handler argument passed in the call
+                    to AuthConfigProvider.getClientAuthConfig or getServerAuthConfig that acquired the corresponding
+                    authentication context configuration object. The handler argument must not be null, and the argument
+                    handler and the CallbackHandler passed to the initialize method of an authentication modules should
+                    support the following callbacks, and it must be possible to configure the runtime such that the
+                    CallbackHandler passed at module initialization supports the following callbacks (in addition to any
+                    others required to be supported by the applicable internal profile): CertStoreCallback,
+                    PrivateKeyCallback, SecretKeyCallback, TrustStoreCallback </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:115"></a><font size="1PT">JASPIC:SPEC:115</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The CallbackHandler must be initialized with
+                    any application context required to process the supported callbacks on behalf of the corresponding
+                    application. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:116"></a><font size="1PT">JASPIC:SPEC:116</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The factory implementation returned by
+                    calling the getFactory method of the abstract AuthConfigFactory class must have been configured such
+                    that it returns a non-null AuthConfigProvider for those application contexts for which pluggable
+                    authentication modules have been configured at the SOAP layer. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:117"></a><font size="1PT">JASPIC:SPEC:117</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> For each application context for which it is
+                    servicing requests, the runtime must call getConfigProvider to acquire the provider object
+                    corresponding to the layer and application context. The layer and appContext arguments to
+                    getConfigProvider must be as defined in Section 4.1, Message Layer Identifier and Section 4.2,
+                    Application Context Identifier respectively. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:118"></a><font size="1PT">JASPIC:SPEC:118</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A null return value from getConfigProvider
+                    indicates that pluggable authentication modules have not been configured at the layer for the
+                    application context and that the messaging runtime must proceed to perform its SOAP message
+                    processing without reliance on this profile. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:119"></a><font size="1PT">JASPIC:SPEC:119</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">7</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> In cases where a runtime chooses to delegate
+                    authentication session management to authentication contexts and their contained authentication
+                    modules, the AuthConfigPrivider must have been configured, as described in Section 2.1.2.2, What the
+                    Provider Must Do, to return non-null authentication contexts for all operation identifiers,
+                    independent of whether or not the corresponding operation is protected. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:120"></a><font size="1PT">JASPIC:SPEC:120</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">7.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If getOperation returns a non-null operation
+                    identifier, then the operation identifier must be the String value corresponding to the operation
+                    name appearing in the service description (i.e., WSDL). </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">deprecated</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:121"></a><font size="1PT">JASPIC:SPEC:121</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">7.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> As defined in Section 2.1.3, &ldquo;Acquire
+                    AuthContext Identifier,&rdquo; on page 17, the authentication context identifier used in the call to
+                    getAuthContext must be equivalent to the value that would be acquired by calling getAuthContextID
+                    with the MessageInfo that will be used in the corresponding call to secureRequest (by a client
+                    runtime) or validateRequest (by a server runtime). </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">deprecated</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:122"></a><font size="1PT">JASPIC:SPEC:122</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">7.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Each authentication context object obtained
+                    via getAuthContext must initialize its encapsulated authentication modules with a non-null
+                    requestPolicy and/or a non-null responsePolicy; such that at least one of requestPolicy or
+                    responsePolicy is not null. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:123"></a><font size="1PT">JASPIC:SPEC:123</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Unless the client runtime is embedded in a
+                    server runtime (e.g.; an invocation of a web service by a servlet running in a Servlet container),
+                    The CallbackHandler passed to ClientAuthModule.initialize must support the following callbacks:
+                    NameCallback, PasswordCallback </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:124"></a><font size="1PT">JASPIC:SPEC:124</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If a non-null AuthConfigProvider is returned
+                    (by the call to getConfigProvider), the messaging runtime must call getClientAuthConfig on the
+                    provider to obtain the authentication context configuration object pertaining to the application
+                    context at the layer. The layer and appContext arguments of the call to getClientAuthConfig must be
+                    the same as those used to acquire the provider, and the handler argument must be as defined in
+                    Section 4.8.1, ?CallbackHandler Requirements? for a client runtime. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:125"></a><font size="1PT">JASPIC:SPEC:125</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If a non-null AuthConfigProvider is returned
+                    (by the call to getConfigProvider), the messaging runtime must call getClientAuthConfig on the
+                    provider to obtain the authentication context configuration object pertaining to the application
+                    context at the layer. The layer and appContext arguments of the call to getClientAuthConfig must be
+                    the same as those used to acquire the provider, and the handler argument must be as defined in
+                    Section 4.8.2, CallbackHandler Requirements, for a client runtime. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:126"></a><font size="1PT">JASPIC:SPEC:126</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A null return value from getAuthContext
+                    indicates that pluggable authentication modules have not been configured for the operation within
+                    the authentication context configuration scope, and that the client runtime must proceed to perform
+                    its SOAP message processing without reliance on this profile. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:127"></a><font size="1PT">JASPIC:SPEC:127</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.4.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A non-null Subject corresponding to the
+                    client must be passed as the clientSubject in the getAuthContext call. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:128"></a><font size="1PT">JASPIC:SPEC:128</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.4.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A null value may be passed for the properties
+                    argument in all calls made to getAuthContext </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:129"></a><font size="1PT">JASPIC:SPEC:129</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.4.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Each ClientAuthContext obtained via
+                    getAuthContext must initialize its encapsulated ClientAuthModule objects with requestPolicy and
+                    responsePolicy objects (or null values) that are compatible with the requirements and capabilities
+                    of the service invocation at the service. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:130"></a><font size="1PT">JASPIC:SPEC:130</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the client runtime obtained a non-null
+                    ClientAuthContext by using the operation identifier corresponding to the request message, then at
+                    point (1) in the message processing model, the runtime must call secureRequest on the
+                    ClientAuthContext, and at point (4) the runtime must call validateResponse on the ClientAuthContext.
+
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:131"></a><font size="1PT">JASPIC:SPEC:131</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.4.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The messageInfo argument used in a call to
+                    secureRequest must have been initialized by the runtime such that its getRequestMessage will return
+                    the SOAP request message being processed by the runtime. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:132"></a><font size="1PT">JASPIC:SPEC:132</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.5.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When a corresponding call is made to
+                    validateResponse, it must be made with the same messageInfo and clientSubject arguments used in the
+                    corresponding call to secureRequest, and it must have been initiialized by the runtime such that its
+                    getResponseMessage method will return the SOAP response message being processed by the runtime. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:133"></a><font size="1PT">JASPIC:SPEC:133</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.5.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> This profile requires that the message
+                    processing runtime establish the following key-value pairs within the Map of the MessageInfo passed
+                    in the calls to secureRequest and validateResponse Key= jakarta.xml.ws.wsdl.service Value= qualified
+                    service name, represented as a javax.xml.namespace.QName.. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:134"></a><font size="1PT">JASPIC:SPEC:134</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.5.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The clientSubject used in the call to
+                    getAuthContext must be used in the call to secureRequest and for any corresponding calls to
+                    validateResponse. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:135"></a><font size="1PT">JASPIC:SPEC:135</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.5.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When secureRequest is called on a module that
+                    was initialized with a mandatory request policy (as defined by the return value from
+                    requestPolicy.isMandatory()), the module must only return AuthStatus.SEND_SUCCESS if it was able to
+                    completely satisfy the request policy. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:136"></a><font size="1PT">JASPIC:SPEC:136</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.5.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the module was not able to completely
+                    satisfy the response policy, it must: return AuthStatus.SEND_CONTINUE - if it has established a
+                    request (available to the runtime by calling messageInfo.getRequestMessage) that must be sent by the
+                    runtime for the response validation to be effectively continued by the client. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:137"></a><font size="1PT">JASPIC:SPEC:137</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.5.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the module was not able to completely
+                    satisfy the response policy, it must: return AuthStatus.FAILURE - if the response validation failed.
+                    The module must have established a response message containing a SOAP fault element (available to
+                    the runtime by calling messageInfo.getResponseMessage) that may be returned to the application to
+                    indicate that the request failed. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:138"></a><font size="1PT">JASPIC:SPEC:138</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.5.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the module was not able to completely
+                    satisfy the response policy, it must: throw an AuthException - if the response validation failed.
+                    The runtime may choose to return a response message containing a SOAP fault element, in which case,
+                    the runtime must define the content of the message and of the fault, and may do so based on the
+                    content of the AuthException. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:139"></a><font size="1PT">JASPIC:SPEC:139</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.5.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When secureRequest is called on a module that
+                    was initialized with an optional requestPolicy (i.e., requestPolicy.isMandatory() returns false),
+                    the module should attempt to satisfy the request policy but it must do so without requiring
+                    additional messages or interactions involving the service. Independent of whether the request policy
+                    is satisfied, the module may return AuthStatus.SUCCESS. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:140"></a><font size="1PT">JASPIC:SPEC:140</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.5.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When validateResponse is called after the
+                    service invocation on a module that was initialized with an undefined response policy (i.e.,
+                    responsePolicy == null), the module must return AuthStatus.SUCCESS. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:141"></a><font size="1PT">JASPIC:SPEC:141</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.5.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When validateResponse is called after the
+                    service invocation on a module that was initialized with a mandatory response policy (as defined by
+                    the return value from responsePolicy.isMandatory()), the module must only return AuthStatus.SUCCESS
+                    if it was able to completely satisfy the response policy. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:142"></a><font size="1PT">JASPIC:SPEC:142</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.5.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the module was not able to completely
+                    satisfy the response policy, it must: return AuthStatus.SEND_CONTINUE - if it has established a
+                    request (available to the runtime by calling messageInfo.getRequestMessage) that must be sent by the
+                    runtime for the response validation to be effectively continued by the client. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:143"></a><font size="1PT">JASPIC:SPEC:143</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.5.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the module was not able to completely
+                    satisfy the response policy, it must: return AuthStatus.FAILURE - if the response validation failed.
+                    The module must have established a response message containing a SOAP fault element (available to
+                    the runtime by calling messageInfo.getResponseMessage) that may be returned to the application to
+                    indicate that the request failed. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:144"></a><font size="1PT">JASPIC:SPEC:144</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.5.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the module was not able to completely
+                    satisfy the response policy, it must: throw an AuthException - if the response validation failed.
+                    The runtime may choose to return a response message containing a SOAP fault element, in which case,
+                    the runtime must define the content of the message and of the fault, and may do so based on the
+                    content of the AuthException. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:145"></a><font size="1PT">JASPIC:SPEC:145</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.5.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When validateResponse is called after the
+                    service invocation on a module that was initialized with an optional responsePolicy (i.e.,
+                    responsePolicy.isMandatory() returns false), the module should attempt to satisfy the response
+                    policy but it must do so without requiring additional messages or interactions involving the
+                    service. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:146"></a><font size="1PT">JASPIC:SPEC:146</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.5.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Independent of whether the response policy is
+                    satisfied, the module may return AuthStatus.SUCCESS. if the module determines that an invalid
+                    security context was used to secure the response, then the module may return AuthStatus.FAILURE </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:147"></a><font size="1PT">JASPIC:SPEC:147</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.5.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When validateResponse is called before the
+                    service invocation, the module must return AuthStatus.SEND_CONTINUE if the request dialog is to
+                    continue. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:148"></a><font size="1PT">JASPIC:SPEC:148</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.5.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the module returns AuthStatus.FAILURE, it
+                    must have established a SOAP message containing a SOAP fault element as the response in messageInfo
+                    and that may be returned to the application to indicate that the request failed. If the module
+                    throws an AuthException, the runtime may choose to return a response message containing a SOAP fault
+                    element, in which case, the runtime must define the content of the message and of the fault, and may
+                    do so based on the content of the AuthException. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:149"></a><font size="1PT">JASPIC:SPEC:149</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The CallbackHandler passed to
+                    ServerAuthModule.initialize must support the following callbacks: CallerPrincipalCallback,
+                    GroupPrincipalCallback , PasswordValidationCallback . </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:150"></a><font size="1PT">JASPIC:SPEC:150</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If a non-null AuthConfigProvider is returned
+                    (by the call to getConfigProvider), the messaging runtime must call getServerAuthConfig on the
+                    provider to obtain the authentication context configuration object pertaining to the application
+                    context at the layer. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:151"></a><font size="1PT">JASPIC:SPEC:151</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A null return value from getAuthContext
+                    indicates that pluggable authentication modules have not been configured for the operation at the
+                    layer and for the application context and that the server runtime must proceed to perform its SOAP
+                    message processing without reliance on this profile. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">deprecated</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:152"></a><font size="1PT">JASPIC:SPEC:152</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.3.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A null value may be passed for the properties
+                    argument in all calls made to getAuthContext </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">deprecated</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:153"></a><font size="1PT">JASPIC:SPEC:153</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.4.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When a non-null requestPolicy is used to
+                    initialize the authentication modules of the ServerAuthContext must be constructed such that the
+                    value obtained by calling isMandatory on the requestPolicy accurately reflects whether (i.e., true
+                    return value) or not (i.e, false return value) message protection is required to access the web
+                    service invocation corresponding to the MessageInfo used to acquire the ServerAuthContext.
+                    Similarly, the responsePolicy used to initialize the authentication modules must be constructed such
+                    that the value obtained by calling isMandatory on the responsePolicy accurately reflects whether
+                    (i.e., true return value) or not (i.e, false return value) message protection is required (within
+                    the SOAP messaging layer) on the response(if there is one) resulting from the corresponding
+                    webservice invocation. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:154"></a><font size="1PT">JASPIC:SPEC:154</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.4.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Calling getTargetPolicies on the
+                    requestPolicy corresponding to a web service invocation for which a SOAP layer client identity is to
+                    be established as the caller identity must return an array containing at least one TargetPolicy for
+                    which calling getProtectionPolicy.getID() returns one of the following values:
+                    ProtectionPolicy.AUTHENTICATE_SENDER, ProtectionPolicy.AUTHENTICATE_CONTENT </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:155"></a><font size="1PT">JASPIC:SPEC:155</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the server runtime obtained a non-null
+                    ServerAuthContext by using the authentication context identifier corresponding to the request
+                    message, then at point (2) in the message processing model, the runtime must call validateRequest on
+                    the ServerAuthContext, and at point (3) the runtime must call secureResponse on the
+                    ServerAuthContext. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:156"></a><font size="1PT">JASPIC:SPEC:156</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the call to validateRequest returns
+                    AuthStatus.SUCCESS, the runtime must perform any web service authorization processing2 required by
+                    the runtime as a prerequisite to accessing the target resource. If authentication is required for
+                    the request to be authorized, the runtime must determine whether the authentication identity
+                    established in the clientSubject is authorized to access the resource. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:157"></a><font size="1PT">JASPIC:SPEC:157</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> In a Jakarta Authorization compatible runtime, the identity
+                    tested for authorization must be comprised of exactly the Principal objects of the clientSubject. If
+                    the request is NOT authorized, and the message-exchange pattern is not one-way, the runtime must set
+                    within the response (within messageInfo) a SOAP fault element as defined by the runtime. If the
+                    request was determined to be authorized, it must be dispatched to the resource. Otherwise the
+                    request must NOT be dispatched and the runtime must proceed to point (3) in the message processing
+                    model (as appropriate to the message exchange pattern). </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:158"></a><font size="1PT">JASPIC:SPEC:158</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the invocation of the resource results in
+                    an exception being thrown by the resource to the runtime and the message exchange pattern is not
+                    one-way, the runtime must set within the response (within messageInfo) a SOAP fault element as
+                    defined by the runtime. Following the resource invocation, and if the message exchange pattern is
+                    not one-way, the runtime must proceed to point (3) in the message processing model. At point (3) in
+                    the message processing model, the runtime must call secureResponse on the same ServerAuthContext
+                    used in the corresponding call to validateRequest and with the same MessageInfo object. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:159"></a><font size="1PT">JASPIC:SPEC:159</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The call to secureResponse must not be made
+                    if the resource throws an exception to the calling runtime. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">deprecated</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:160"></a><font size="1PT">JASPIC:SPEC:160</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> This profile requires that the message
+                    processing runtime establish the following key-value pairs within the Map of the MessageInfo object
+                    passed in the calls to validateRequest and secureResponse. Key= jakarta.xml.ws.wsdl.service value=
+                    the application context identifier as defined in Sec 4.2 Application Context Identifier. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">deprecated</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:161"></a><font size="1PT">JASPIC:SPEC:161</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.5.2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A new clientSubject must be instantiated and
+                    passed in any calls made to validateRequest. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:162"></a><font size="1PT">JASPIC:SPEC:162</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.5.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When validateRequest is called before the
+                    service invocation on a module that was initialized with an undefined request policy (i.e.,
+                    requestPolicy == null), the module must return AuthStatus.SUCCESS </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:163"></a><font size="1PT">JASPIC:SPEC:163</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.5.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When validateRequest is called before the
+                    service invocation on a module initialized with a mandatory request policy (as defined by the return
+                    value from requestPolicy.isMandatory()), the module must only return AuthStatus.SUCCESS if it was
+                    able to completely satisfy the request policy. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:164"></a><font size="1PT">JASPIC:SPEC:164</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.5.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the module returns AuthStatus.SUCCESS, and
+                    the request policy was satisfied (and included a TargetPolicy element as described above), then the
+                    module (or its context) must employ the CallerPrincipalCallback as described above. If the request
+                    policy was not satisfied (and included a TargetPolicy element as described above), and yet the
+                    module chooses to return AuthStatus.SUCCESS, the module (or its context) must use a
+                    CallerPrincipalCallback to establish the container&rsquo;s representation of the unauthenticated
+                    caller within the clientSubject </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:165"></a><font size="1PT">JASPIC:SPEC:165</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.5.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the module determines that an invalid or
+                    incomplete security context was used to secure the request, then the module may return
+                    AuthStatus.SEND_FAILURE, AuthStatus.SEND_CONTINUE, or throw an AuthException.If the module throws an
+                    AuthException, or returns any value other that AuthStatus.SUCCESS, the runtime must NOT proceed to
+                    the service invocation. The runtime must process an AuthException as described above for a request
+                    with a mandatory requestPolicy. The runtime must process any return value other than
+                    AuthStatus.SUCCESS as it would be processed if it were returned for a request with a mandatory
+                    requestPolicy. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:166"></a><font size="1PT">JASPIC:SPEC:166</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.5.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the module was not able to completely
+                    satisfy the request policy, it must: return AuthStatus.SEND_FAILURE - if the request validation
+                    failed, and when the module has established a SOAP message containing a fault element (available to
+                    the runtime by calling messageInfo.getResponseMessage) that may be sent by the runtime to inform the
+                    client that the request failed. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:167"></a><font size="1PT">JASPIC:SPEC:167</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.5.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the module was not able to completely
+                    satisfy the request policy, it must: throw an AuthException - if the request validation failed, and
+                    when the module has NOT defined a response, to be sent by the runtime. If the runtime chooses to
+                    send a response, it must define a SOAP message containing a SOAP fault element, and may use the
+                    content of the AuthException to do so. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:168"></a><font size="1PT">JASPIC:SPEC:168</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.5.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When validateRequest is called before the
+                    service invocation on a module that was initialized with an optional request policy (i.e.,
+                    requestPolicy.isMandatory() returns false), the module should attempt to satisfy the request policy
+                    but it must do so without requiring additional messages or interactions involving the client. If the
+                    request policy is satisfied, and it included a TargetPolicy element with a PotectionPolicy of
+                    AUTHENTICATE_SOURCE or AUTHENTICATE_CONTENT, then the module must employ the CallerPrincipalCallback
+                    as described above. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:169"></a><font size="1PT">JASPIC:SPEC:169</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.4.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Independent of whether the authentication
+                    policy is satisfied, the module may return AuthStatus.SUCCESS. if the module determines that an
+                    invalid security context was used to secure the request, or that the request requires additional
+                    processing (e.g. decryption) to be suitable for processing by the runtime, then the module may
+                    return AuthStatus.FAILURE or throw an AuthException. In which case, the runtime must determine
+                    whether to terminate the request or to (attempt to) process it. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">deprecated</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:170"></a><font size="1PT">JASPIC:SPEC:170</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.5.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When validateRequest is called after the
+                    service invocation, the module must return AuthStatus.SEND_SUCCESS when the module has successfully
+                    secured the application response message and made it available via messageInfo.getResponseMessage.
+                    For the request to be successfully completed, the runtime must send the response message returned by
+                    the module. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:171"></a><font size="1PT">JASPIC:SPEC:171</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.5.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When securing of the application response
+                    message has failed, and the response dialog is to be terminated, the module must return
+                    AuthStatus.SEND_FAILURE or throw an AuthException. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:172"></a><font size="1PT">JASPIC:SPEC:172</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.5.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the module returns
+                    AuthStatus.SEND_FAILURE, it must have established a SOAP message containing a SOAP fault element as
+                    the response in messageInfo. The runtime may choose not to send a response message, or to send a
+                    different response message. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:173"></a><font size="1PT">JASPIC:SPEC:173</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.5.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When the module throws an AuthException, the
+                    runtime may chose not to send a response. If the runtime sends a response, the runtime must define
+                    the content of the response. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:174"></a><font size="1PT">JASPIC:SPEC:174</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.5.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The module must return
+                    AuthStatus.SEND_CONTINUE if the response dialog is to continue. This status value is used to inform
+                    the calling runtime that (in order to successfully complete the response processing) it will need to
+                    be capable of continuing the message dialog by processing at least one additional request/response
+                    exchange (after having sent the response message returned in messageInfo). </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:175"></a><font size="1PT">JASPIC:SPEC:175</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.5.4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When secureResponse is called on a module
+                    that was initialized with an undefined responsePolicy (i.e., responsePolicy == null), the module
+                    must return AuthStatus.SUCCESS. Otherwise, the AuthStatus return value and AuthException semantics
+                    of secureResponse are as defined in validateRequest After Service Invocation. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:176"></a><font size="1PT">JASPIC:SPEC:176</font></TD>
+            <TD align="center" valign="center"><font size="1PT">5</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The ServerAuthModule must create an instance
+                    of a javax.security.auth.login.LoginContext. If the ServerAuthModule passes a custom
+                    javax.security.auth.login.Configuration object to the constructor, then it also passes a custom
+                    value as the name input. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:177"></a><font size="1PT">JASPIC:SPEC:177</font></TD>
+            <TD align="center" valign="center"><font size="1PT">5</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the ServerAuthModule does not pass a
+                    custom Configuration object to the constructor, then it must pass its own fully qualified class name
+                    as the name input. In this case, the configuration administrator must configure the relevant
+                    LoginModule objects in an entry for that class name, or must configure the LoginModule objects into
+                    the standard default entry called other. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:178"></a><font size="1PT">JASPIC:SPEC:178</font></TD>
+            <TD align="center" valign="center"><font size="1PT">5</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the ServerAuthModule passes a Subject to
+                    the LoginContext constructor, it must pass its client Subject. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:179"></a><font size="1PT">JASPIC:SPEC:179</font></TD>
+            <TD align="center" valign="center"><font size="1PT">5</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The ServerAuthModule must pass a
+                    CallbackHandler to the constructor and the passed CallbackHandler must conform to the requirements
+                    of Section 5.3, Standard Callbacks. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:180"></a><font size="1PT">JASPIC:SPEC:180</font></TD>
+            <TD align="center" valign="center"><font size="1PT">5</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A new LoginContext instance should be created
+                    for each new request, and a LoginContext instance should not be shared across different requests. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:181"></a><font size="1PT">JASPIC:SPEC:181</font></TD>
+            <TD align="center" valign="center"><font size="1PT">5</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> Once a LoginContext object has been created,
+                    the LoginContext.login method may be invoked from within the ServerAuthModule.validateRequest method
+                    to delegate security processing to the LoginModule objects configured in the LoginContext. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:182"></a><font size="1PT">JASPIC:SPEC:182</font></TD>
+            <TD align="center" valign="center"><font size="1PT">5</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A LoginModule must only perform
+                    protocolindependent security processing (for example, verifying a username/password that was
+                    transmitted in the request). </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:183"></a><font size="1PT">JASPIC:SPEC:183</font></TD>
+            <TD align="center" valign="center"><font size="1PT">5</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A LoginModule requests information from the
+                    ServerAuthModule using the ServerAuthModule provided CallbackHandler. Since the LoginModule must
+                    only perform protocol-independent operations, it follows that any callback it requests from the
+                    handler must also be protocol-independent. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:184"></a><font size="1PT">JASPIC:SPEC:184</font></TD>
+            <TD align="center" valign="center"><font size="1PT">5</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> This profile requires that the
+                    CallbackHandler provided by the ServerAuthModule to the LoginContext constructor support the
+                    javax.security.auth.callback.NameCallback and the javax.security.auth.callback.PasswordCallback.
+
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:326"></a><font size="1PT">JASPIC:SPEC:326</font></TD>
+            <TD align="center" valign="center"><font size="1PT">5</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the ServerAuthModule passes its client
+                    Subject to the LoginContext constructor, the CallbackHandler provided to the LoginContext
+                    constructor must also support the GroupPrincipalCallback. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:185"></a><font size="1PT">JASPIC:SPEC:185</font></TD>
+            <TD align="center" valign="center"><font size="1PT">5</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If authentication succeeds, a LoginModule may
+                    update its Subject instance with authenticated Principal and credential objects. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:186"></a><font size="1PT">JASPIC:SPEC:186</font></TD>
+            <TD align="center" valign="center"><font size="1PT">5</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the ServerAuthModule did not pass its
+                    client Subject to the LoginContext constructor, then it must transfer the Principals and credentials
+                    from the LoginContext Subject to the client Subject. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:327"></a><font size="1PT">JASPIC:SPEC:327</font></TD>
+            <TD align="center" valign="center"><font size="1PT">5</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the ServerAuthModule is implementing a
+                    profile of this specification that requires the module to employ the CallerPrincipalCallback, then
+                    the ServerAuthModule must satisfy this requirement using the CallbackHandler provided to the
+                    ServerAuthModule, and the CallerPrincipalCallback must be constructed using the name value that
+                    would be obtained by the LoginModule if it uses its CallbackHandler to handle a NameCallback. (note
+                    1: The CallerPrincipalCallback may be constucted with a String argument containing the name value,
+                    or with a Principal argument whose getName method returns the name value.) </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:187"></a><font size="1PT">JASPIC:SPEC:187</font></TD>
+            <TD align="center" valign="center"><font size="1PT">5</font></TD>
+            <TD align="center" valign="center"><font size="1PT">5</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When ServerAuthModule.cleanSubject is called
+                    on the client Subject, the cleanSubject method must invoke the LoginContext.logout method. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:188"></a><font size="1PT">JASPIC:SPEC:188</font></TD>
+            <TD align="center" valign="center"><font size="1PT">5</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If the LoginContext instance throws a
+                    LoginException, the ServerAuthModule must throw a corresponding AuthException. The LoginException
+                    may be established as the cause of the AuthException. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:189"></a><font size="1PT">JASPIC:SPEC:189</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The message layer value used to select the
+                    AuthConfigProvider and ServerAuthConfig objects for this profile must be JMS </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:190"></a><font size="1PT">JASPIC:SPEC:190</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The application context identifier (i.e., the
+                    appContext parameter value) used to select the AuthConfigProvider, ClientAuthConfig, and
+                    ServerAuthConfig objects for a specific application shall be the name of the Destination. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:191"></a><font size="1PT">JASPIC:SPEC:191</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="center" valign="center"><font size="1PT">3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The MessageInfo argument used in any call
+                    made by the message processing runtime to validateRequest or secureResponse must have been
+                    initialized such that the non-null objects returned by the getRequestMessage and getResponseMessage
+                    methods of the AuthParam are an instanceof javax.jmx.Message. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:192"></a><font size="1PT">JASPIC:SPEC:192</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The getSupportedMessageTypes method of all
+                    authentication modules integrated for use with this profile, must include jakarta.jms.Message in its
+                    return value. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:193"></a><font size="1PT">JASPIC:SPEC:193</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The factory implementation returned by
+                    calling the getFactory method of the abstract AuthConfigFactory class must have been configured such
+                    that it returns a non-null AuthConfigProvider for those application contexts for which pluggable
+                    authentication modules have been configured at the JMS layer. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:194"></a><font size="1PT">JASPIC:SPEC:194</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> For each JMS Destination for which it is
+                    servicing requests, the runtime must call getConfigProvider to acquire the corresponding provider
+                    object. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:195"></a><font size="1PT">JASPIC:SPEC:195</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> For each JMS Destination for which it is
+                    servicing requests, the runtime must call getConfigProvider to acquire the corresponding provider
+                    object. The layer and appContext arguments to getConfigProvider must be as defined in Section 6.1,
+                    'Message Layer Identifier' and Section 6.2, 'Application Context Identifier' respectively. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:196"></a><font size="1PT">JASPIC:SPEC:196</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> A null return value from getConfigProvider
+                    indicates that pluggable authentication modules have not been configured at the layer for the
+                    application context and that the messaging runtime must proceed to perform its JMS message
+                    processing without reliance on this profile. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:197"></a><font size="1PT">JASPIC:SPEC:197</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="center" valign="center"><font size="1PT">7</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When a non-null AuthConfigProvider is
+                    returned by the factory, the provider must have been configured with the information required to
+                    initialize the authentication contexts for the (one or more) JMS Destinations for which the provider
+                    is registered (at the factory). </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:198"></a><font size="1PT">JASPIC:SPEC:198</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="center" valign="center"><font size="1PT">7.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> If getOperation returns a non-null operation
+                    identifier, then the operation identifier must be the String value defined as follows: - When the
+                    message is a request for a QueueConnection or a TopicConnection, then the operation identifier is
+                    the String value representing the JNDI name of the Connection Factory. - When the message is a
+                    request to create a publisher or subscriber, or a sender or receiver, then the operation identifier
+                    must be the String value corresponding to the Destination name. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:199"></a><font size="1PT">JASPIC:SPEC:199</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The following must be satisfied by a runtime
+                    operating in the client role: A runtime may operate in both the client and server roles. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:200"></a><font size="1PT">JASPIC:SPEC:200</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.4.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The messageInfo argument used in a call to
+                    secureRequest must have been initialized by the runtime such that its getRequestMessage will return
+                    the JMS request message being processed by the runtime. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:201"></a><font size="1PT">JASPIC:SPEC:201</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.4.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When a corresponding call is made to
+                    validateResponse, it must be made with the same messageInfo and clientSubject arguments used in the
+                    corresponding call to secureRequest, and it must have been initialized by the runtime such that its
+                    getResponseMessage method will return the JMS response message being processed by the runtime. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:202"></a><font size="1PT">JASPIC:SPEC:202</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.4.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When secureRequest is called on a module that
+                    was initialized with a mandatory request policy (as defined by the return value from
+                    requestPolicy.isMandatory()), the module must only return AuthStatus.SEND_SUCCESS if it was able to
+                    completely satisfy the request policy. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:203"></a><font size="1PT">JASPIC:SPEC:203</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.4.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When secureRequest is called on a module that
+                    was initialized with a mandatory request policy (as defined by the return value from
+                    requestPolicy.isMandatory()), If the module was not able to completely satisfy the response policy,
+                    it must: - return AuthStatus.SEND_CONTINUE - if it has established a request - return
+                    AuthStatus.FAILURE - if the response validation failed. - throw an AuthException - if the response
+                    validation failed. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:204"></a><font size="1PT">JASPIC:SPEC:204</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.4.3</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When secureRequest is called on a module that
+                    was initialized with an optional requestPolicy (i.e.,requestPolicy.isMandatory() returns false), if
+                    the module attempts to satisfy the request policy, it must do so without requiring additional
+                    messages or interactions involving the service. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:205"></a><font size="1PT">JASPIC:SPEC:205</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The requirements of this profile that must be
+                    satisfied by a runtime operating in the server role are: - Receives a message from a Sender before
+                    reaching the Queue - Receives a message from a Publisher on the way to a Topic - Receives a request
+                    for creation of a TopicPublisher or QueueSender - Receives a message from the a JMS Provider </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:206"></a><font size="1PT">JASPIC:SPEC:206</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.4.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The messageInfo argument used in a call to
+                    validateRequest must have been initialized by the runtime such that its getRequestMessage will
+                    return the JMS request message being processed by the runtime. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:207"></a><font size="1PT">JASPIC:SPEC:207</font></TD>
+            <TD align="center" valign="center"><font size="1PT">6</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.4.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When a corresponding call is made to
+                    secureResponse, it must be made with the same messageInfo and serviceSubject arguments used in the
+                    corresponding call to validateRequest, and it must have been initialized by the runtime such that
+                    its getResponseMessage method will return the JMS response message being processed by the runtime. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:208"></a><font size="1PT">JASPIC:SPEC:208</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">8.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The application context identifier used by a
+                    client-runtime to acquire the AuthConfigProvider and ClientAuthConfig objects pertaining to the
+                    client side processing of a web service invocation shall begin with a client scope identifier that
+                    identifies the client. If the client-runtime may host multiple client applications, then the client
+                    scope identifier must differentiate among the client applications deployed within the runtime. In
+                    runtimes where applications are differentiated by unambiguous application identifiers, an
+                    application identifier may be used as the client scope identifier. Where application identifiers are
+                    not defined or suitable, the location (for example, its file path) of the client archive from which
+                    the invocation will originate may be used as the client scope identifier In addition to its client
+                    scope identifier, the application context identifier must include a client reference to the service.
+                    If a service reference is defined for the invocation (for example, by using a WebServiceRef
+                    annotation as defined in the JAXWS 2.0 or JAXWS 2.1 Specifications), the client reference to the
+                    service must be the name value of the service reference. If a service reference was not defined for
+                    the invocation, the client reference to the service must be the web service URL. A client
+                    application context identifier must be the String value composed by concatenating the client scope
+                    identifier, a blank separator character, and the client reference to the service. AppContextID ::=
+                    client-scope-identfier blank client-reference </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:209"></a><font size="1PT">JASPIC:SPEC:209</font></TD>
+            <TD align="center" valign="center"><font size="1PT">4</font></TD>
+            <TD align="center" valign="center"><font size="1PT">9.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> The application context identifier used by a
+                    server-runtime to acquire the AuthConfigProvider and ServerAuthConfig objects pertaining to the
+                    endpoint side processing of an invocation shall be the String value constructed by concatenating a
+                    host name, a blank separator character, and the path3 component of the service endpoint URI
+                    corresponding to the webservice. AppContextID ::= hostname blank service-endpoint-uri In the
+                    definition of server-side application context identifiers, this profile uses the term host name to
+                    refer to the logical host that performs the service corresponding to a service invocation. Web
+                    service invocations may be directed to a logical host using various physical or virtual host names
+                    or addresses, and a message processing runtime may be composed of multiple logical hosts. Systems or
+                    administrators that register AuthConfigProvider objects with specific server-side application
+                    context identifiers must have an ability to determine the hostname for which they wish to perform
+                    the registration. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:328"></a><font size="1PT">JASPIC:SPEC:328</font></TD>
+            <TD align="center" valign="center"><font size="1PT">PackageHead -
+                    jakarta.security.auth.message.config</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthConfigFactory</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> getConfigProvider(): All factories shall
+                    employ the following precedence rules to select the registered AuthConfigProvider that matches the
+                    layer and appContext arguments: 1. The provider that is specifically registered for both the
+                    corresponding message layer and appContext shall be selected. 2. If no provider is selected
+                    according to the preceding rule, the provider specifically registered for the corresponding
+                    appContext and for all message layers shall be selected. 3. If no provider is selected according to
+                    the preceding rules, the provider specifically registered for the corresponding message layer and
+                    for all appContexts shall be selected. 4. If no provider is selected according to the preceding
+                    rules, the provider registered for all message layers and for all appContexts shall be selected. 5.
+                    If no provider is selected according to the preceding rules, the factory shall terminate its search
+                    for a registered provider. The above precedence rules apply equivalently to registrations created
+                    with a null or non-null className argument. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:329"></a><font size="1PT">JASPIC:SPEC:329</font></TD>
+            <TD align="center" valign="center"><font size="1PT">PackageHead -
+                    jakarta.security.auth.message.config</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthConfigFactory</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> getFactory(): If a non-null system-wide
+                    factory instance is defined at the time of the call, for example, with setFactory, it will be
+                    returned. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:330"></a><font size="1PT">JASPIC:SPEC:330</font></TD>
+            <TD align="center" valign="center"><font size="1PT">PackageHead -
+                    jakarta.security.auth.message.config</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthConfigFactory</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> getFactory(): The fully qualified class name
+                    of the default factory implementation class is obtained from the value of the
+                    authconfigprovider.factory security property. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:331"></a><font size="1PT">JASPIC:SPEC:331</font></TD>
+            <TD align="center" valign="center"><font size="1PT">PackageHead -
+                    jakarta.security.auth.message.config</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthConfigFactory</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> registerConfigProvider(className, properties,
+                    layer, appContext, description): At most one registration may exist within the factory for a given
+                    combination of message layer and appContext. Any pre-existing registration with identical values for
+                    layer and appContext is replaced by a subsequent registration. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:332"></a><font size="1PT">JASPIC:SPEC:332</font></TD>
+            <TD align="center" valign="center"><font size="1PT">PackageHead -
+                    jakarta.security.auth.message.config</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthConfigFactory</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> registerConfigProvider(className, properties,
+                    layer, appContext, description): [At most one registration may exist within the factory for a given
+                    combination of message layer and appContext. Any pre-existing registration with identical values for
+                    layer and appContext is replaced by a subsequent registration.] When replacement occurs, the
+                    registration identifier, layer, and appContext identifier remain unchanged, and the
+                    AuthConfigProvider (with initialization properties) and description are replaced. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:333"></a><font size="1PT">JASPIC:SPEC:333</font></TD>
+            <TD align="center" valign="center"><font size="1PT">PackageHead -
+                    jakarta.security.auth.message.config</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthConfigFactory</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> registerConfigProvider(className, properties,
+                    layer, appContext, description): Within the lifetime of its Java process, a factory must assign
+                    unique registration identifiers to registrations, and must never assign a previously used
+                    registration identifier to a registration whose message layer and or appContext identifier differ
+                    from the previous use. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:334"></a><font size="1PT">JASPIC:SPEC:334</font></TD>
+            <TD align="center" valign="center"><font size="1PT">PackageHead -
+                    jakarta.security.auth.message.config</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthConfigFactory</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> registerConfigProvider(provider, layer,
+                    appContext, description): Registers within the (in-memory) factory, a provider of ServerAuthConfig
+                    and/or ClientAuthConfig objects for a message layer and application context identifier. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:335"></a><font size="1PT">JASPIC:SPEC:335</font></TD>
+            <TD align="center" valign="center"><font size="1PT">PackageHead -
+                    jakarta.security.auth.message.config</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthConfigFactory</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> setFactory() Set the system-wide
+                    AuthConfigFactory implementation. If an implementation was set previously, it will be replaced.
+                    Listeners are not notified of a change to the registered factory. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:336"></a><font size="1PT">JASPIC:SPEC:336</font></TD>
+            <TD align="center" valign="center"><font size="1PT">PackageHead -
+                    jakarta.security.auth.message.config</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthConfigFactory.RegistrationContext</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> isPersistent() Returns: A boolean indicating
+                    whether the registration is the result of a className based registration, or an instance-based (for
+                    example, self-) registration. Only registrations performed using the five argument
+                    registerConfigProvider method are persistent. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:337"></a><font size="1PT">JASPIC:SPEC:337</font></TD>
+            <TD align="center" valign="center"><font size="1PT">2</font></TD>
+            <TD align="center" valign="center"><font size="1PT">1.1.1</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> When a listener argument is included in the
+                    call to acquire a provider, the factory will invoke the notify method of the listener when the
+                    correspondence between the provider and the layer and application context for which is had been
+                    acquired is no longer in effect. When the notify method is invoked by the factory, the runtime
+                    should reacquire an AuthConfigProvider for the layer and application context. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:338"></a><font size="1PT">JASPIC:SPEC:338</font></TD>
+            <TD align="center" valign="center"><font size="1PT">PackageHead -
+                    jakarta.security.auth.message.config</font></TD>
+            <TD align="center" valign="center"><font size="1PT">RegistrationListener</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> notify() The AuthConfigFactory will invoke
+                    the notify method of the RegistrationListener if the corresponding provider registration is
+                    unregistered or replaced at the factory. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:339"></a><font size="1PT">JASPIC:SPEC:339</font></TD>
+            <TD align="center" valign="center"><font size="1PT">PackageHead -
+                    jakarta.security.auth.message.config</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthConfigFactory</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> detachListener() The AuthConfigFactory will
+                    invoke the notify method of the RegistrationListener if the corresponding provider registration is
+                    unregistered or replaced at the factory. Returns: An array of String values where each value
+                    identifies a provider registration from which the listener was removed. This method never returns
+                    null; it returns an empty array if the listener was not removed from any registrations. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:340"></a><font size="1PT">JASPIC:SPEC:340</font></TD>
+            <TD align="center" valign="center"><font size="1PT">PackageHead -
+                    jakarta.security.auth.message.config</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthConfigFactory</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> registerConfigProvider(className, properties,
+                    layer, appContext, description) When replacement occurs, the registration identifier, layer, and
+                    appContext identifier remain unchanged, and the AuthConfigProvider (with initialization properties)
+                    and description are replaced. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:341"></a><font size="1PT">JASPIC:SPEC:341</font></TD>
+            <TD align="center" valign="center"><font size="1PT">PackageHead -
+                    jakarta.security.auth.message.config</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthConfigFactory</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> registerConfigProvider(className, properties,
+                    layer, appContext, description) Programmatic registrations performed by using this method must
+                    update (according to the replacement rules described above) the persistent declarative
+                    representation of provider registrations employed by the factory constructor. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:342"></a><font size="1PT">JASPIC:SPEC:342</font></TD>
+            <TD align="center" valign="center"><font size="1PT">PackageHead -
+                    jakarta.security.auth.message.config</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthConfigFactory</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> registerConfigProvider(acp, layer,
+                    appContext, description) At most one registration may exist within the factory for a given
+                    combination of message layer and appContext. Any pre-existing registration with identical values for
+                    layer and appContext is replaced by a subsequent registration. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:343"></a><font size="1PT">JASPIC:SPEC:343</font></TD>
+            <TD align="center" valign="center"><font size="1PT">PackageHead -
+                    jakarta.security.auth.message.config</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthConfigFactory</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> registerConfigProvider(acp, layer,
+                    appContext, description) When replacement occurs, the registration identifier, layer, and appContext
+                    identifier remain unchanged, and the AuthConfigProvider (with initialization properties) and
+                    description are replaced. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:344"></a><font size="1PT">JASPIC:SPEC:344</font></TD>
+            <TD align="center" valign="center"><font size="1PT">PackageHead -
+                    jakarta.security.auth.message.config</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthConfigFactory</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> removeRegistration() Remove the identified
+                    provider registration from the factory (and from the persistent declarative representation of
+                    provider registrations, if appropriate) and invoke any listeners associated with the removed
+                    registration. Verify this returns True when there is a registration with the specified identifier
+                    and it was removed. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+        <TR>
+            <TD align="center" valign="center"><a name="JASPIC:SPEC:345"></a><font size="1PT">JASPIC:SPEC:345</font></TD>
+            <TD align="center" valign="center"><font size="1PT">PackageHead -
+                    jakarta.security.auth.message.config</font></TD>
+            <TD align="center" valign="center"><font size="1PT">AuthConfigFactory</font></TD>
+            <TD align="left" valign="center"><font size="1PT"> removeRegistration() Remove the identified
+                    provider registration from the factory (and from the persistent declarative representation of
+                    provider registrations, if appropriate) and invoke any listeners associated with the removed
+                    registration. Verify this returns false when the registrationID is invalid. </font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+            <TD align="center" valign="center"><font size="1PT"> <br>
+            </font></TD>
+            <TD align="center" valign="center"><font size="1PT">false</font></TD>
+            <TD align="center" valign="center"><font size="1PT">technology</font></TD>
+            <TD align="center" valign="center"><font size="1PT">active</font></TD>
+            <TD align="center" valign="center"><font size="1PT">true</font></TD>
+        </TR>
+    </TABLE>
+</body>
+</html>