Difference between revisions of "Policy-Based Access Control"

From MgmtWiki
Jump to: navigation, search
Line 13: Line 13:
(which is open)
* Supposedly this is open, whatever that means.
* [https://docs.jboss.org/drools/release/7.1.0.Final/drools-docs/html_single/ Drools documentation.]
===HL7 CQL===
===HL7 CQL===

Revision as of 15:05, 13 December 2021

Full Title or Meme

Policy-Based Access Control or PBAC is any system where Access is mediated by Access Tokens that are evaluated by a digital policy language and policy control engine.


  • The most common Attribute-Based Access Control language XACML expanded their scope in version 3.0 to include the description Policy-Based Access Control although policy statement was defined in earlier versions.

Existing Languages


  • XACML 3.0 core spec.
  • This spec is written in XML with no regard of size of the message. It can easily be converted to json and this a a spec that describe the process.
  • While it is oriented to an overly complex structure using monolithic designs, it has well-thought out elements that should remain useful.