Clarification about Storage Objects category

[simo5]

Currently section 4.4 Storage Objects clarifies that this is not an actual object class but just a category of objects.

However the specification never explicitly mention which object types are of storage object category and which aren't.

Specifically it is very ambiguous whether CKO_PROFILE and CKO_VALIDATION objects are of type Storage Object and therefore can have attributes like CKA_TOKEN, CKA_PRIVATE, CKA_MODIFIABLE, CKA_LABEL, CKA_COPYABLE, CKA_DESTROYABLE or CKA_UNIQUE_ID assigned to them.

Perhaps the specification should be amended to explicitly note whether a class is of type Storage Objects or not, or non storage classes have explicitly stated that they are not.

At the moment implementations may go either way with regard to CKO_PROFILE and CKO_VALIDATION objects, although I believe they should probably explicitly marked as non-storage objects and therefore should not be able to carry the Storage Object common attributes.