Security News > 2017 > October > The 10 misconceptions of using a policy-based approach for access control

The principle of Attribute Based Access Control (ABAC) has existed for many years. It’s the evolution from simple access control lists and role-based access control, to a highly flexible system for administering access based on the evaluation of attributes. For authorization requirements, this separates the management of access control code from the application development lifecycle. In essence, it reduces the need to touch application code every time there is a business, regulatory or internal change. … More →

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/jcU-6NY-6AY/