[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]
Subject: Re: [xacml] BTG sequence diagram
> On Fri, 2011-04-22 at 16:32 -0700, Bill Parducci wrote: > So Rich, in this scenario you are treating the BTG priv attribute as a Resource? If not, what does "permit" refer to? > > thanks > > b > > On Apr 22, 2011, at 4:25 PM, rich levinson wrote: > > > • The PEP in front of GlassMgr asks the PDP if this User is authorized to activate > > his BTG priv. > > • The PDP says yes, the User, according to Policy is authorized to perform this > > action (activate the User's BTG priv), and returns Permit. > I had in mind a generic "BTG state", which I guess would be an environment attribute. The user invokes a method of the GlassManager like "breakGlass()". Upon finding that the user is authorized to execute this action, the GlassManager executes this method to set the environment attribute, btg-state, to "true". In an earlier email I asked for clarification on what, exactly, the glass protected: a person, a class of persons, a resource, a group of resources, or some combination of these? I guess generically you could have a boolean btg-state attribute for every action, resource, and subject (as well as an environment btg-state). Then the user would invoke a method like "breakGlass('Bart Simpson')" to unprotect Bart Simpson's records. The PIP would ask for the btg-state attribute pertaining to Bart's records. This is another area that needs to be clarified in David's BTG proposal. Regards, --Paul
[Date Prev] | [Thread Prev] | [Thread Next] | [Date Next] -- [Date Index] | [Thread Index] | [List Home]