[cap-talk] Architectural Choices for Security -movingforward-How to migrate SOA from IBAC to ABAC
Karp, Alan H
alan.karp at hp.com
Wed Nov 14 13:23:17 EST 2007
Marc Stiegler wrote:
>
> Truthfully, I think the right term to use is still IBAC, which is the
> term Alan has historically used. Referring to "Identity Based" as IBAC
> and Authorization Based as ABAC is instantly understood by
> everyone. But
> unless you are talking to the smaller circle of people who speak of
> AuthN and AuthZ, the N and the Z need such a long explanation that it
> gets in the way of the discussion. NBAC and ZBAC is a total
> failure for
> an "elevator pitch", for example, unlike IBAC and ABAC.
>
I agree with everything you say, but I still think we need a more
general term. As I'm talking about IBAC, I can just see them thinking
"What's wrong with this guy? Hasn't he ever heard of RBAC?"
________________________
Alan Karp
Principal Scientist
Virus Safe Computing Initiative
Hewlett-Packard Laboratories
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029
https://ecardfile.com/id/Alan_Karp
http://www.hpl.hp.com/personal/Alan_Karp
More information about the cap-talk
mailing list