[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [hrac resources]
> >Do I understand correctly your conclusion that tree-like organization of
> >resource security metadata is not sufficient for the healthcare domain?
> Although the question was addressed to Juggy, I'll chime in too. If by "not
> sufficient" you mean "we need it but it isn't enough so we need other stuff
> as well" then I disagree. If by "not sufficient" you mean not helpful,
> appropriate, useful, etc. then I do agree. Having hierarchical structures
> that encode hundreds of different data points for myriads of different
> instances, all without an explanation of what the hierarchy means (except
> perhaps an ordered list of elements that are not really strictly ordered in
> terms of semantics) is downright scary.
Tree-like hierarchies can be considered as a way to group resources in addition
to flat space. Like in file system, you can have all files in one directory or
you can allocate them in subdirectories in hope to reduce administrative
overhead. It does not mean that notion of sub-directories makes your life
easier automatically. You have plan well and provide semantics of those
subdirectories somewhere else. But it's still much better than storing all
files in one directory.
> Nobody is going to be able to
> manage any significant policy with that kind of policy model, IMNSHO.
If you think that the tree-like organization of resource security metadata is
not appropriate/useful/sufficient, then my question is "What are the
alternatives we should look into?"
Konstantin
----------------
Broadcast message to hrac-rfp from Konstantin Beznosov <beznosov@baptisthealth.net>.
Go to http://cadse.cs.fiu.edu/omg/hrac-rfp to browse the mail list archive.