This PolicySet defines the default Access Control Policy for registry resources. http://www.w3.org/TR/1999/Rec-xpath-19991116 Any Subject can perform read action on any resource. urn:oasis:names:tc:ebxml-regrep:ActionType:read Any Subject can perform reference action on any resource as long as it is not deprecated. urn:oasis:names:tc:ebxml-regrep:ActionType:reference urn:oasis:names:tc:ebxml-regrep:StatusType:Deprecated A Subject whose id matches the owner attribute of resource can perform any action on resources owned by them. A Subject with role of RegistryAdministrator can perform any action on any resource. /urn:oasis:names:tc:ebxml-regrep:classificationScheme:SubjectRole/RegistryAdministrator