Difference between revisions of "Policy-Based Access Control"

From MgmtWiki
Jump to: navigation, search
(XACML)
(XACML)
Line 6: Line 6:
 
* The most common [[Attribute]]-Based Access Control language [[XACML]] expanded their scope in version 3.0 to include the description [[Policy-Based Access Control]] although policy statement was defined in earlier versions.
 
* The most common [[Attribute]]-Based Access Control language [[XACML]] expanded their scope in version 3.0 to include the description [[Policy-Based Access Control]] although policy statement was defined in earlier versions.
  
==XACML==
+
==Existing Languages==
 +
===XACML===
 
* [http://docs.oasis-open.org/xacml/3.0/errata01/os/xacml-3.0-core-spec-errata01-os.doc XACML 2.0 core spec.]
 
* [http://docs.oasis-open.org/xacml/3.0/errata01/os/xacml-3.0-core-spec-errata01-os.doc XACML 2.0 core spec.]
 +
===Drools===
 +
(which is open)
 +
===HL7 CQL===
  
 
==Solution==
 
==Solution==

Revision as of 14:29, 13 December 2021

Full Title or Meme

Policy-Based Access Control or PBAC is any system where Access is mediated by Access Tokens that are evaluated by a digital policy language and policy control engine.

Context

  • The most common Attribute-Based Access Control language XACML expanded their scope in version 3.0 to include the description Policy-Based Access Control although policy statement was defined in earlier versions.

Existing Languages

XACML

Drools

(which is open)

HL7 CQL

Solution

PolicyFLows.png

References