Page Properties |
---|
Contexts | Computer Science, IAM |
---|
Term | Authorization |
---|
Alternative Forms | To authorize |
---|
Definitions | The granting of privileges that govern what an authority allows an entity (or its identity representation) to do. More precisely, we may distinguish: The act of granting the privilege (implicitly the outcome of a decision or policy rule) The privilege itself (the abstract idea of its legitimacy coming from a decision or policy) The physical representation of this privilege for example in a computer system The verification of the privilege, often just before the entity performs an action to assure that the action was approved by the authority (e.g. at run-time)
|
---|
Related Terms | |
---|
|
Quotes
Access privileges that are granted to an entity that convey an “official” sanction to perform a security function or activity.
...
(Mather et al., 2009, p. 77)
authorization A process by which users, having completed an *authentication stage, gain or are denied access to particular resources based on their entitlement.
(Butterfield et al., 2016, p. 160)
Authorisation – What the Identity can do, in a given instance, as a result of proving an assertion.
...
(Saltzer and Schroeder, 1975)
Bibliography
...