[cap-talk] Architectural Choices for Security: terminology
Bill Frantz
frantz at pwpconsult.com
Thu Nov 15 20:51:48 EST 2007
david.hopwood at industrial-designers.co.uk (David Hopwood) on Friday, November 16, 2007 wrote:
>At risk of repeating myself, I view the critical distinction as being
>between access control mechanisms in which references carry authority,
>vs. those based on checking of requestor identities. I don't have a
>concrete terminology suggestion at the moment, but I would be happy with
>any terms that made this distinction clear.
How about identity-centric and reference-centric authorization? (Ducking)
Cheers - Bill
-----------------------------------------------------------------------
Bill Frantz | I like the farmers' market | Periwinkle
(408)356-8506 | because I can get fruits and | 16345 Englewood Ave
www.pwpconsult.com | vegetables without stickers. | Los Gatos, CA 95032
More information about the cap-talk
mailing list