[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [xacml-dev] Database data access control using XACML
Yes vendors such as Axiomatics and Bitkoo do offer products for db access control. To date only the Axiomatics product conforms to xacml 3.0.
Note that xacml is application agnostic so you can theoretically protect anything with any xacml policy.
The integration strategy determines what sort of application you can protect and how.
You need to check how that integration works what performance impact there may be, whether there is caching or precomputation and what sort of queries are allowed.
Make sure the product you choose achieves live access control using standard xacml 3.0 policies. Axiomatics Reverse Query (announced at Catalyst 2011) does.
Xacml is flexible enough to let you achieve row / column / data access control.
Therefore there are no special policies to be written which makes xacml particularly elegant.
Cheers
David.
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]