ACLs, Roles and their derivatives just don’t fit today’s dynamic computing environments and frankly neither does OAuth 2.0
ACLs, Roles and their derivatives just don’t fit today’s dynamic computing environments and frankly neither does OAuth 2.0
For the most part the Authorization (AuthZ) used by the industry has not evolved in a way that effectively deals with modern systems as it is based on old methods that were developed for much less sophisticated & dynamic environments. This is a major contributing factor to the security breaches we hear about so often.
We have been issued a patent by the United States Patent and Trademark Office (USPTO) granting us the sole right to make, use, or sell our invented Authorization Method.
Our Patented Attribute Based method includes: "granting, by a processor, the first element authority to perform the requested activity according to the at least one rule of the requested activity evaluating at least one attribute of at least the second element to determine if the requested activity is allowed by the first element". For example, looking at the NIST diagram of Attribute Based Access Control (ABAC), our Patent covers the use of Object Attributes in Access Control Policies.
It means that we will be licensing as well as developing a range of Authorization services (independently and with partners) that will implement our method at every level of computing from application to infrastructure.
It also means that you cannot make, use or sell our method
(the use of resource/object attributes in access control policies)
without our approval.
SEATTLE, WA
Copyright © 2020 SNOWFLAKE ITM, Inc. - All Rights Reserved.