RE: [ggf-ogsa-sec-wg] inter-domain requirements

["Markus Lorch" <mlorch@vt.edu>]

Along these lines,

isn't privilege management the established term? It seems to me
that policy management and privilege management is very close. 
(Even though I see that policy management may be the better term
as a privilege can be stated as a policy statement).

Markus

> -----Original Message-----
> From: owner-ogsa-sec-wg@gridforum.org
> [mailto:owner-ogsa-sec-wg@gridforum.org]On Behalf Of Cowles, Robert D.
> Sent: Monday, October 21, 2002 10:35 PM
> To: Von Welch
> Cc: ogsa-sec-wg@gridforum.org
> Subject: RE: [ggf-ogsa-sec-wg] inter-domain requirements
> 
> 
> I am so relieved!  I have been afraid that once we finished 
> shoving all the hard problems from authentication to 
> authorization we would be stuck with having to solve them.  Now 
> it appears there is a new distinction between authorization and 
> policy management ... meaning that we can take the nastiest 
> authorization problems and declare them policy management (to be 
> solved later). 
> 
> Sorry .... Von ... could you explain more about the "line" 
> between policy management and authorization?
> 
> BC
> 
> 
> > 
> > 
> > Olle,
> > 
> >  Thinking about the line between authorization assertions and policy
> > management I've come to the conclusion that SAML (and other)
> > authorization assertions are a form of policy management.
> >