Revision as of 17:35, 10 November 2014 edit David.brossard (talk \| contribs) 204 edits No edit summary ← Previous edit		Revision as of 17:35, 10 November 2014 edit undo David.brossard (talk \| contribs) 204 edits No edit summary Next edit →
Line 2: ==Other models== Historically, access control models have included mandatory access control ([[[[Mandatory_access_control\|MAC]]]]), discretionary access control ([[[[Discretionary access control\|DAC]]]]), and more recently role-based access control ([[[[Role-based access control\|RBAC]]]]). These access control models are user-centric and do not take into account additional parameters such as resource information, relationship between the user (the requesting entity) and the resource, and dynamic information e.g. time of the day or user IP. ABAC tries to address this by defining access control based on attributes which describe the requesting entity (the user), the targeted object or resource, the desired action (view, edit, delete...), and environmental or contextual information. This is why access control is said to be attribute-based.

Attribute-based access control: Difference between revisions