Javascript disabled? Like other modern websites, the IETF Datatracker relies on Javascript. Please enable Javascript for full functionality.

ALFA 2.0 - the Abbreviated Language for Authorization
draft-brossard-alfa-authz-00

Versions:

This document is an Internet-Draft (I-D). Anyone may submit an I-D to the IETF. This I-D is not endorsed by the IETF and has no formal standing in the IETF standards process.

Document	Type	Expired Internet-Draft (individual) Expired & archived
	Authors	David Brossard , Andrew Clymer , Theodosios Dimitrakos
	Last updated	2025-01-23 (Latest revision 2024-07-22)
	RFC stream	(None)
	Intended RFC status	(None)
	Formats	txt html xml htmlized bibtex bibxml
Stream	Stream state	(No stream defined)
	Consensus boilerplate	Unknown
	RFC Editor Note	(None)
IESG	IESG state	Expired
	Telechat date	(None)
	Responsible AD	(None)
	Send notices to	(None)

Email authors IPR References Referenced by Nits Search email archive

This Internet-Draft is no longer active. A copy of the expired Internet-Draft is available in these formats:

txt html xml htmlized bibtex bibxml

Abstract

The Abbreviated Language for Authorization 2.0 is a constrained policy language aimed at solving fine-grained authorization challenges. This specification builds on top of [XACML] and replaces [ALFA] to provide a more complete and easier language to use. Use cases for ALFA 2.0 include the ability to express: - Role-based access control ([RBAC]), - Attribute-based access control ([ABAC]), and - Relationship-based access control ([ReBAC])

Authors

David Brossard
Andrew Clymer
Theodosios Dimitrakos

(Note: The e-mail addresses provided for the authors of this Internet-Draft may no longer be valid.)

ALFA 2.0 - the Abbreviated Language for Authorization draft-brossard-alfa-authz-00

ALFA 2.0 - the Abbreviated Language for Authorization
draft-brossard-alfa-authz-00