[cap-talk] Architectural Choices for Security: terminology
Karp, Alan H
alan.karp at hp.com
Fri Nov 16 10:58:02 EST 2007
Bill Frantz wrote:
>
> How about identity-centric and reference-centric
> authorization? (Ducking)
>
Because roles (RBAC) and attributes (PBAC) aren't identities, and not
all authorizations are used as references.
________________________
Alan Karp
Principal Scientist
Virus Safe Computing Initiative
Hewlett-Packard Laboratories
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029
https://ecardfile.com/id/Alan_Karp
http://www.hpl.hp.com/personal/Alan_Karp
More information about the cap-talk
mailing list