Authorization (Dictionary Entry)

Contexts

Computer Science, IAM

Term

Authorization

Alternative Forms

To authorize Verb

Definitions

The granting of privileges that govern what an authority allows an entity (or its identity representation) to do.

More precisely, we may distinguish:

  • The act of granting the privilege (implicitly the outcome of a decision or policy rule)

  • The privilege itself (the abstract idea of its legitimacy coming from a decision or policy)

  • The physical representation of this privilege for example in a computer system

  • The verification of the privilege, often just before the entity performs an action to assure that the action was approved by the authority (e.g. at run-time)

Related Terms

Quotes

Access privileges that are granted to an entity that convey an “official” sanction to perform a security function or activity.

Authorization

When an account is created, it is often necessary to specify what the account can do, in the form of privileges. We use the term authorization for the granting of privileges that govern what an account is allowed to do.

When Alice creates her online account, the bank authorizes her account to access the application to view checking accounts. If she does not have a brokerage account at the bank, her account would not be authorized to access the bank’s stock trading application. Needless to say, her account would also not be authorized to view account information for the bank’s other customers! Alice’s authorization indicates the privileges her account has been granted. Authorization for an account is typically done at the time an account is created and may be updated over time.

Authorization is the process of determining the privileges the user or system is entitled to once the identity is established. In the context of digital services, authorization usually follows the authentication step and is used to determine whether the user or service has the necessary privileges to perform certain operations—in other words, authorization is the process of enforcing policies.

authorization A process by which users, having completed an *authentication stage, gain or are denied access to particular resources based on their entitlement.

Authorisation – What the Identity can do, in a given instance, as a result of proving an assertion.

Authorize

To grant a principal access to certain information.

Bibliography

See Also


Follow us on LinkedIn | Discuss on Slack | Support us with Patreon | Sign-up for a free membership.


This wiki is owned by Open Measure, a non-profit association. The original content we publish is licensed under a Creative Commons Attribution 4.0 International License.