Motivation

• Fine-grained access control to resources

• Integration of

- local and distributed policies

- user-defined and domain-specific

• Support for

  - various authorization models
  
  - different authentication policies
  - common policies, e.g. time and location constraints
  - application-specific policies

• Facilitation of

- authorization decisions

- determination of policies associated with the targeted object

- enforcement of the policies

Next slide

Back to first slide

View graphic version