Context Navigation

← Previous Change
Wiki History
Next Change →

Changes between Version 30 and Version 31 of Internal/Rbac

Timestamp:: Oct 10, 2006, 2:11:07 PM (18 years ago)
Author:: anonymous
Comment:: —

Legend:

: Unmodified
: Added
: Removed
: Modified

Internal/Rbac

v30	v31
13	13	In ORBIT, role-based access control will be implemented using LDAP. Besides authenticating users, an LDAP schema will be developed for a directory of projects and roles. In ORBIT roles will be expressed within projects. A given user may be assigned one set of roles on a given project and a different set on another project.
14	14
15		Development of ORBIT RBAC will require modifications to the services ~~interface to~~ ORBIT resources so that access to the methods those services present to users can be controlled. Further, a monitor program based on the NIST RBAC/Web code is needed to keep track of each user's active roles and to grant access quickly to users when accessing these methods. It is expected that this implementation will have acceptable performance while providing the desired levels of protection and administrative capability.
	15	Development of ORBIT RBAC will require modifications to the services that manage ORBIT resources so that access to the methods those services present to users can be controlled. Further, a monitor program based on the NIST RBAC/Web code is needed to keep track of each user's active roles and to grant access quickly to users when accessing these methods. It is expected that this implementation will have acceptable performance while providing the desired levels of protection and administrative capability.
16	16
17	17	The rest of the wiki pages for the ORBIT Role-Based Access Control project are organized as follows. The [wiki:Internal/Rbac/OrbitRbacLevels RBAC Reference Model] page briefly describes the core, hierarchical, static separation of duty and dynamic separation of duty components of the RBAC specification. The [wiki:Internal/Rbac/OrbitRbacDesign ORBIT RBAC Design] page and its subsidiary pages contain design issues and decisions. The [wiki:Internal/Rbac/LdapResources LDAP Resources] and [wiki:Internal/Rbac/RbacResources RBAC Resources] pages each briefly describe important sources then give a fairly comprehensive list of references. All of the bracketed wiki references like [[http://orbit-lab.org/attachment/wiki/Internal/Rbac/RbacResources/ANSI+INCITS+359-2004.pdf Ame04]] are on the [wiki:Internal/Rbac/RbacResources RBAC Resources] page.