Browse Prior Art Database

Mechanism for Peforming Role Assigment and Authorization Simoultaneously

IP.com Disclosure Number: IPCOM000015897D
Original Publication Date: 2002-Aug-12
Included in the Prior Art Database: 2003-Jun-21

Publishing Venue

IBM

Abstract

A program is disclosed that performs role assignment and authorization simultaneously for role-based authorization systems. Traditional methods first assign roles to an authenticated identity, then perform authorization based on the roles. On the other hand, the program performs authorization, roles contained in authorization rules are assigned to the identity. The following figure depicts an overview of the program. 1 R equest User ID