Public Rights Exclusions
Original Publication Date: 1986-Nov-01
Included in the Prior Art Database: 2005-Mar-09
A mechanism is provided by which individual users can be excluded from having public authorization to entities on a computer system. Security models on current computer systems typically have three element authorization schemes. The three elements include who is being authorized, what is the target of their authorization, (i.e., the entity), and what is the level of authorization (i.e., rights to the entity). The level of authorization is implemented as a vector, called an authorization- bit vector. Each bit of the vector represents an individual right, such as read, write, or execute. To provide the most usable interface, many systems provide the concept of both private rights and public rights. Private rights are those rights given to a specific user, and public rights are given to any user of the entity.