[cap-talk] Abstractions that subsume capabilities
Karp, Alan H
alan.karp at hp.com
Fri Mar 7 16:48:21 EST 2008
Rob Meijer wrote:
>
> Only when looking at your diagram I realized that the ABAC
> acronym jumped
> to the other side. This to me is rather confusing, wouldn't
> it be better
> to keep using ABAC as authorization based access control
> rather than ZBAC?
>
Unfortunately, the US DoD has been using ABAC to stand for Attribute Based Access Control for what I had been calling Policy based. Since I'm currently working on a study for the Navy, I had to come up with acronyms that won't confuse my audience. Since they are familiar with the terms authn and authz, I chose to use NBAC and ZBAC.
________________________
Alan Karp
Principal Scientist
Virus Safe Computing Initiative
Hewlett-Packard Laboratories
1501 Page Mill Road
Palo Alto, CA 94304
(650) 857-3967, fax (650) 857-7029
http://www.hpl.hp.com/personal/Alan_Karp
More information about the cap-talk
mailing list