Next: Application Example
Up: Domain and Type Enforcement
Previous: Model Description
While the RC model makes role assignments based on users and programs, both
represented by processes, the DTE model itself avoids the concept of users
and only focuses on programs. User representation and role assignment are
placed under the discretion of unspecific DTE aware applications outside the
scope of the model.
Another DTE drawback is that roles can only be changed through entry point
programs, while the RC model allows to dynamically switch to compatible
roles within one single application and to default roles on every change of
the process owner. Dynamic role changes are specially useful for user based
server programs.
Finally, DTE administration concepts were not mentioned in [Badger+95]
and thus remain unclear.
Amon Ott