Project

General

Profile

Requirement #393

(Requirement) Access control rule evaluation must be highly scalable and responsive.

Added by Dave Vieglais over 11 years ago. Updated about 11 years ago.

Status:
New
Priority:
High
Assignee:
Category:
Requirement
Target version:
-
Start date:
Due date:
% Done:

0%


Description

Access control for objects is evaluated for every object access in the DataONE infrastructure. As such, the mechanisms used to determine if a particular token (i.e. handle to an authenticated principle) must be very efficient and should not offer a barrier to the desired levels of access control in the system.

Rationale

Access control should not be an impediment to effective use of the content available through DataONE.

Fit Criteria

  • Access control rules can be evaluted for any token in an average of xxx milliseconds

  • Access control rules must not take longer than xxx milliseconds to evaluate

  • Access control must not block critical operations (e.g replications, synchronization)

History

#1 Updated by Dave Vieglais almost 52 years ago

(In #384) Blocked by 393 since access control rules must be applied to search results to determine if the results can be returned to the user.

Also available in: Atom PDF

Add picture from clipboard (Maximum size: 14.8 MB)