7.4.5 Identifying Release Distributors Without Authentication

Establishing the identity of the caller to the web service can also be accomplished without formal authentication (although in that case the provider of a web service cannot be certain that the caller is who it claims to be) by including, for instance, the DDEX Party Identifier (DPID) of the web service caller into the URL syntax.