The Abacus: A New Architecture for Policy-based Authorization

Date
2021-01-05
Authors
Siebach, Jacob
Giboney, Justin
Journal Title
Journal ISSN
Volume Title
Publisher
Abstract
Modern authorization architectures using role-based, policy-based, and even custom solutions have numerous flaws and challenges. A new design for authorization architecture is presented called the Abacus. This paper discusses the architecture that the Abacus utilizes to overcome the issues inherent in other proprietary and open-source authorization solutions. Specifically, the Abacus respects domain boundaries, is less complex than existing systems, and does not require direct connections to domain data stores.
Description
Keywords
Cyber Systems: Their Science, Engineering, and Security, access control, authorization, data governance, pbac
Citation
Rights
Access Rights
Email libraryada-l@lists.hawaii.edu if you need this content in ADA-compliant format.