next up previous
Next: Application Example Up: Domain and Type Enforcement Previous: Model Description

Comparison to RC Model

While the RC model makes role assignments based on users and programs, both represented by processes, the DTE model itself avoids the concept of users and only focuses on programs. User representation and role assignment are placed under the discretion of unspecific DTE aware applications outside the scope of the model.

Another DTE drawback is that roles can only be changed through entry point programs, while the RC model allows to dynamically switch to compatible roles within one single application and to default roles on every change of the process owner. Dynamic role changes are specially useful for user based server programs.

Finally, DTE administration concepts were not mentioned in [Badger+95] and thus remain unclear.


Amon Ott