Wednesday, November 14, 2007

XACML Use Case

Wired reports on an Operating Manual for Guantanamo Bay prison camp
The manual shows how the military coded each prisoner according to the level of access the Red Cross would have. The four levels are:

* No Access
* Visual Access -- ICRC can only look at a prisoner's physical condition.
* Restricted Access -- ICRC representatives can only ask short questions about the prisoner's health.
* Unrestricted Access
Were such rules captured in XACML, then automatic logging in support of audit would be ... oh wait, that's right, audit was deemed out of scope.

No comments: