AuthZ - Infinite Lexicon - Infinite Lexicon

AuthZ

AuthZ, short for authorization, is the process that determines whether a subject has permission to perform a given action on a resource. It follows authentication, which verifies identity, and is typically driven by policies and access-control rules. Authorization decisions depend on the subject’s identity or attributes, the resource’s attributes, the requested operation, and context such as time, location, or device state. Decisions are commonly binary (allow or deny), though they can include constraints or conditions.

Common models include RBAC (role-based access control), which assigns permissions by role; ABAC (attribute-based access control),

Standards and languages used to express authorization policies include XACML, ALFA, and the Rego language used

capability-based

implementations

a