The Open Group Library

Authorization (AZN) API

Authorization (AZN) API

Reference: C908

$0.00

Availability: Available to download

A generally accepted definition of authorization is the granting of access rights to a subject (for example, a user or a program).
Description

Details

A generally accepted definition of authorization is the granting of access rights to a subject (for example, a user or a program). Within this definition we need to distinguish between the administrative act of asserting that a subject should be granted access rights (termed 'privilege attributes') and the operational act of allowing a subject to access a resource after determining that they hold the required set of privilege attributes. This Technical Standard defines a generic application programming interface for access control, in systems whose access control facilities conform to the architectural framework described in ISO 10181-3 (Access Control Framework). The API defined in this document does not provide for privilege attribute administration, although it does provide facilities which allow a subject to control which of its privilege attributes are used to authorize a particular access request (such facilities are often called 'least privilege').
Additional Information

Additional Information

Reference C908
UK ISBN 1859122663
Published 15 Jan 2000
Pages 110
Type Standards
Subject Security
Standards Information

Standards Information Base

Common Name AZN API
Status Adopted
Service Category Security and Risk Services
Service Access Control Services
Type The Open Group Standard
Usage The API defined in this document does not provide for privilege attribute administration, although it does provide facilities which allow a subject to control which of its privilege attributes are used to authorize a particular access request (such facilities are often called 'least privilege').
Reviews