Changes between Version 24 and Version 25 of Internal/Rbac/OrbitRbacDesign/ThreatAnalysis
- Timestamp:
- Sep 20, 2006, 5:57:27 PM (18 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Internal/Rbac/OrbitRbacDesign/ThreatAnalysis
v24 v25 23 23 * intentional or unintentional modification or deletion of a user's or a project's scripts or own components or data results by nonproject members. 24 24 * unauthorized access to ORBIT system code, esp., device driver source or controller scripts. 25 25 http://lists.oasis-open.org/archives/xacml/200404/msg00036.html 26 26 Who (what role on the project) is allowed to change data, i.e., remove outliers, otherwise filter data, or delete data sets? 27 27 … … 34 34 Are there any requirements related to version control? Is it safe to assume that each project will keep track of it? 35 35 36 Although it does not seem likely with the current ORBIT resources, it is possible that access to some resources, e.g., special instruments, might be limited to protect them from overuse or damage or just to keep the in calibration. 36 Although it does not seem likely with the current ORBIT resources, it is possible that access to some resources, e.g., special instruments, might be limited to protect them from overuse or damage or just to keep the in calibration.http://lists.oasis-open.org/archives/xacml/200404/msg00036.html 37 37 38 38 Are there any other threats that might require the use of RBAC with ORBIT? … … 49 49 50 50 It is assumed that access control will not need to interface with cost accounting. It is assumed that any denial of access to overdrawn users will be enforced by user authentication. If it is required to enforce project-level denial of access due to cost considerations it might be possible to enforce it when an already authorized user attempts to select that project or when he or she accesses an object with a cost associated with it. 51 http://lists.oasis-open.org/archives/xacml/200404/msg00036.html 52 53 It is probably a good idea to maintain Unicode compatibility (UTF-8 encoding) with user and project names for international use.
