- privileges, a generic model
- group and role, draft proposal for MACE-wide model and definition
- Are the definitions in the glossary good enough or are their others that are more widely accepted?
- case studies
- group and role, draft proposal for MACE-wide model and definition
- attribute delivery recipe:
- SAML between IdP & SP
- SPML for push provisioning
- LDAP or a privilege registry for pull provisioning
- is there existing mace-dir work to build on?
- generalizing to federated scenarios and VOs
- What is the namespace and object characteristics for privileges
- authorization and access control
- case studies in production
- rule-based access control
- XACML , DROOLS, others
- policy, a generic model
- P*P architectures: proposed models,
- Application policy, enterprise policy, VO policy
- case studies
- P*P architectures: proposed models,
Overview
Content Tools