[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Access Control

To: ietf-calendar <ietf-calendar@xxxxxxx>
Subject: Access Control
From: Frank Dawson <fdawson@xxxxxxxxxxxxxxx>
Date: 29 Jul 96 15:04:51
Sender: owner-ietf-calendar@xxxxxxx

Dave:

Yes, thanks for reminding us about what you said at the "Summit" meeting that 
the IETF does not have a common AUTENTICATION service defined.

As to differentiation of AUTHORIZATION and ACCESS CONTROL. An end user can be 
authorized to use a calendar service, but may not have the access control to 
access an individual calendar or to free-time search, view, or modify an 
individual entry. Within an application like calendaring and scheduling, there 
is quite often a distinction made between authorization and access control. 
This is also the case in other services such as document management and work 
flow management.

Bill Spencer's last remarks about access control being differentiated between 
the calendar container and the individual event or todo instances in the 
calendar is VERY important. A good point, Bill!

Cheers.

- - Frank Dawson

Prev by Date: Re: Security
Next by Date: Re: Access Control Requirements
Previous by thread: Re: Access Control
Next by thread: RE: Access Control
Index(es):
- Date
- Thread