Security Terms

re: Security Terms

Skywing — Tue, 29 Jun 2004 00:45:00 GMT

I was wondering exactly what the difference between static and dynamic tracking was -- thanks!

Why doesn't delegation work over the network?

Larry Osterman's WebLog — Tue, 29 Jun 2004 23:07:00 GMT

re: Security Terms

Mike Dimmick — Tue, 29 Jun 2004 22:16:00 GMT

You didn't mention privileges versus permissions, two terms which get confused. Permissions are set on an object and describe what principals are allowed to do to that object. Privileges are set on the principal's account and allow the user to circumvent security mechanisms - for example, to back up a file that the user doesn't otherwise have permission to read, or the ability to debug a process that wasn't created by the user, or to take ownership of an object owned by another user, etc.

Right?

re: Security Terms

Larry Osterman — Tue, 29 Jun 2004 22:18:00 GMT

Spot on Mike. You're right.

I had forgotten about them (none of the articles I'm thinking about didn't cover those).

re: Security Terms

Peter Torr — Sun, 04 Jul 2004 23:53:00 GMT

Sounds like your authentication protocol is broken if it lets a "she" authenticate as a "guy" :-)

Access Checks

Larry Osterman's WebLog — Tue, 14 Sep 2004 00:30:00 GMT

Access Checks, part 2

Larry Osterman's WebLog — Wed, 15 Sep 2004 01:36:00 GMT

Access Checks, part 2

Larry Osterman's WebLog — Wed, 15 Sep 2004 16:38:00 GMT