[cap-talk] Architectural Choices for Security: terminology
Bill Frantz
frantz at pwpconsult.com
Fri Nov 16 21:34:49 EST 2007
alan.karp at hp.com (Karp, Alan H) on Friday, November 16, 2007 wrote:
>Bill Frantz wrote:
>>
>> How about identity-centric and reference-centric
>> authorization? (Ducking)
>>
>Because roles (RBAC) and attributes (PBAC) aren't identities, and not
>all authorizations are used as references.
Well, RBAC is identity centeric because first you identify the user and
then determine which role(s) s/he can take on. BTSOOM what PBAC is?
Cheers - Bill
-------------------------------------------------------------------------
Bill Frantz | The first thing you need when | Periwinkle
(408)356-8506 | using a perimeter defense is a | 16345 Englewood Ave
www.pwpconsult.com | perimeter. | Los Gatos, CA 95032
More information about the cap-talk
mailing list