Our model is designed for a system that spans multiple administrative domains where each domain can impose its own security policies. It is still necessary that a common authentication mechanism be supported between two communicating systems. The model we present enables the syntactic specification of multiple authentication policies, but it does not translate between heterogeneous authentication mechanisms. Metacomputing applications require the ability to exploit diverse resources. The policy language presented in the next section is used to specify access policies for different kinds of resources.