Traditionally, the focus of authorization and access control has been on building barriers to sensitive data and only making it available to a select few. But that’s changed as companies want to get more from their data and make it really work for them. Authorization is now about facilitating user access to the right data under the right conditions. Access control has gone beyond simply need-to-know to include need-to-share authorization.
This paper covers the foundational elements of Attribute Based Access Control and introduces this new evolution in access control.