Attribute-based Access Control

The authors, computer scientists at the National Institute of Standards and Technology in the US, introduce the basics of attribute-based access control (ABAC), meant to grant or deny user access requests based on designated attributes of users and resources in various information systems. They describe prior access control models and approaches, attribute-based access control models and approaches, deployment using Extensible Access Control Markup Language (XACML), Next Generation Access Control, policy verifications and testing, attribute consideration and preparation, deployments in application architectures, life-cycle issues, commercial ABAC products, and open source implementations. Some material in the book is based on existing documents by the authors. Annotation ©2017 Ringgold, Inc., Portland, OR (protoview.com)