Anil John wrote: > OK.. I'll bite.. > > I know what RBAC is and I know what ABAC (Attribute Based Access Control) > is, so what is "Dynamic" RBAC?
I didn't mean to invent a new buzzword. Honest. I was just trying to describe the (very common) situation in which the parties to a collaborative work process may change as the process unfolds - not just the assignment of identities to Roles, but the Roles they play and the nature of these Roles. Most RBAC systems do not provide for this situation - they allow for identities to be set dynamically, and sometimes for their assignment to Roles to be updated in use (though this can be cumbersome and poorly managed), but generally you must pre-configure the system with a set of Role definitions on deployment. Think about any working situation you engage in. By and large, the nature of your work (and that of each of your colleagues) is likely to change at some point during the process, often repeatedly. This is what I mean. Since we are moving to a world in which work processes are distributed across the Internet, we need "Dynamic" RBAC systems to secure them. -- All the best Keith http://keith.harrison-broninski.info ------------------------ Yahoo! Groups Sponsor --------------------~--> You can search right from your browser? It's easy and it's free. See how. http://us.click.yahoo.com/_7bhrC/NGxNAA/yQLSAA/NhFolB/TM --------------------------------------------------------------------~-> Yahoo! Groups Links <*> To visit your group on the web, go to: http://groups.yahoo.com/group/service-orientated-architecture/ <*> To unsubscribe from this group, send an email to: [EMAIL PROTECTED] <*> Your use of Yahoo! Groups is subject to: http://docs.yahoo.com/info/terms/
