[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Initial Submission - Final Edition for review

To: Carol Burt <cburt@2ab.com>
Subject: Re: Initial Submission - Final Edition for review
From: Bret Hartman <hartman@concept5.com>
Date: Thu, 22 Oct 1998 00:50:52 -0400
CC: hrac-rfp@cs.fiu.edu
References: <199810161757.NAA05007@camel7.mindspring.com>
Sender: owner-hrac-rfp@cs.fiu.edu

Carol, Konstantin, Bob, Juggy,

I really like the submission!  I think you've defined general and
powerful abstractions for authorization that will be very useful.  I'm
impressed at the progress you've made in the last few weeks, and I
regret that I haven't been able to participate in the recent
discussions (too many other duties keep pulling me away). 

One _very_ minor point, the submission says that it does not support
access decisions based on the values of request parameters unless the
value is encoded into the ResourceName.  I think you could make a
stronger claim here. Since the ADO client passes security attributes to
AccessDecision, the ADO client can also encode relevant request
parameters as security attributes.  So I'd say the existing interfaces
can support a basic form of value-based authorization.

Bret

Carol Burt wrote:
> 
> Hi,
> 
> We take a moment from the regularly scheduled report to say "I HATE MS
> WORD".   Thanks, I feel better... yes, I know... go mortgage my house and
> get a copy of framemaker (maybe I will).
> 
> Seriously... Please review the attached to be sure all your words are there
> (in spirit if not in the identical form you provided).  I think I've made
> all the requested changes and at this point I'm ready to take input on any
> typo stuff and minor formatting and/or word changes.
> 
> Please review for accuracy... if I have stuff plain wrong this is more
> important than any formatting or simple typo stuff at this point.  I found
> a LOT of left-overs from earlier names of interfaces, methods, and types in
> the text, but I may not have caught everything.
> 
> Thanks to everyone who provided words in the last couple of days.   This is
> the FINAL REVIEW before the initial submission is ftp'd Monday.
> 
> Thanks,
> 
> Carol
> 
>   ------------------------------------------------------------------------
> 
>                                 Name: initial_submission.PDF
>    initial_submission.PDF       Type: Portable Document Format (application/pdf)
>                             Encoding: base64
> 
>   ------------------------------------------------------------------------
> 
> _________________________________________________________
> Carol Burt                                             2AB, Inc.
> cburt@2ab.com                                     Integration Architects
> 205-621-7455                                        www.2ab.com
> Member, OMG Architecture Board          OMG Domain Member
> 
>    --  integrating yesterday's systems with today's technology --

-- 
Bret Hartman                             Concept Five Technologies
Chief Security Architect                 25 Burlington Mall Road
hartman@concept5.com                     Burlington, MA 01803-4141
Voice: 781-229-5308                      Fax: 781-229-5346

----------------
Broadcast message to hrac-rfp from Bret Hartman <hartman@concept5.com>.
Go to http://cadse.cs.fiu.edu/omg/hrac-rfp to browse the mail list archive.

References:
- Initial Submission - Final Edition for review
  - From: Carol Burt <cburt@2ab.com>

Prev by Date: Re: HRAC initial submission doc corbamed/98-10-02
Next by Date: Re: IT security specification and evaluation support for OMG healthcare DTF
Prev by thread: Re: Initial Submission - Final Edition for review
Next by thread: Re: Initial Submission - Final Edition for review
Index(es):
- Date
- Thread