Collaborate Disseminate
When implementing an authorization system like RBAC/DAC, or XACML, or the AWS IAM authorization model, I see that I can’t totally decouple business logic from authorization when there are fine-grained business restrictions.
We don’t use OR… Continue reading How to implement MySQL query fo RBAC authorization with fine grained business restrictions in role?
While reading a number of definitions of attribute-based access control (ABAC), I found that there are two different definitions:
Access control decisions are made using the attributes of users,
objects and the environment…. Continue reading Attribute-based access control standard definition
I’m getting interested in Identity and Access Management (IAM), but I find it hard to find complete and understandable explanations that suit me, surely because I started wrong.
I began with Wikipedia and followed discussion… Continue reading How to get better IAM understanding
The simple solution to access restriction when number of users are small is Access Control Matrix. Here the rows are the users and columns are different types of asset.
In my case, I have a document which I need to serve whi… Continue reading Access based on type of information requested and access grant
Is anybody aware of any open source .NET authorization solution based on OASIS ABAC/RBAC/XACML approach?
I have found some visible amount of Java based solutions but it seems .NET is completely out of it (lack of interest, n… Continue reading Authorization based on OASIS ABAC/RBAC/XACML approach
I’m trying to implement some security access control in a software I’m building. I came across Stormpath for user management and they have somewhat an approach for RBAC yet what I was considering is to rely on XACML for ABAC … Continue reading Can I use stormpath user management service with a XACML library like BALANA?
I’m trying to implement some security access control in a software I’m building. I came across Stormpath for user management and they have somewhat an approach for RBAC yet what I was considering is to rely on XACML for ABAC … Continue reading Can I use stormpath user management service with a XACML library like BALANA?