[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: RE: [xacml-dev] new view for access control
I am not sure why one wants to extend XACML for this purpose. It should be fairly straightforward to develop XACML bindings: all what is needed is to define the context of such an operation. If you describe the information flow operation in a form of some canonical values, you may use XACML to define access policy for it. Daniel; -----Original Message----- From: Berrehouma Nabil [mailto:email@example.com] Sent: Thursday, March 02, 2006 11:26 AM To: firstname.lastname@example.org Subject: [xacml-dev] new view for access control Hi Access Control can be generalized to take into account dissemination of information this is natural because actually access control systems allow local control of information, however in over systems the information must be followed after its dissemination to grant end to end security. Thus, specification language for information flow control may be obtained by extending available languages for Access Control (i.e. XACML) to incorporate clauses describing rules granting the legality of information flows. --------------------------------- Nouveau : téléphonez moins cher avec Yahoo! Messenger ! Découvez les tarifs exceptionnels pour appeler la France et l'international.Téléchargez la version beta. _______________________________________________________________________ Notice: This email message, together with any attachments, may contain information of BEA Systems, Inc., its subsidiaries and affiliated entities, that may be confidential, proprietary, copyrighted and/or legally privileged, and is intended solely for the use of the individual or entity named in this message. If you are not the intended recipient, and have received this message in error, please immediately return this by email and then delete it.