<?xml version="1.0"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
	<id>https://sarwiki.informatik.hu-berlin.de/index.php?action=history&amp;feed=atom&amp;title=Authorization</id>
	<title>Authorization - Revision history</title>
	<link rel="self" type="application/atom+xml" href="https://sarwiki.informatik.hu-berlin.de/index.php?action=history&amp;feed=atom&amp;title=Authorization"/>
	<link rel="alternate" type="text/html" href="https://sarwiki.informatik.hu-berlin.de/index.php?title=Authorization&amp;action=history"/>
	<updated>2026-07-09T05:30:28Z</updated>
	<subtitle>Revision history for this page on the wiki</subtitle>
	<generator>MediaWiki 1.43.9</generator>
	<entry>
		<id>https://sarwiki.informatik.hu-berlin.de/index.php?title=Authorization&amp;diff=3258&amp;oldid=prev</id>
		<title>Bayarkhuu at 00:35, 8 March 2005</title>
		<link rel="alternate" type="text/html" href="https://sarwiki.informatik.hu-berlin.de/index.php?title=Authorization&amp;diff=3258&amp;oldid=prev"/>
		<updated>2005-03-08T00:35:39Z</updated>

		<summary type="html">&lt;p&gt;&lt;/p&gt;
&lt;p&gt;&lt;b&gt;New page&lt;/b&gt;&lt;/p&gt;&lt;div&gt;The process of deciding if device X is allowed to have access to service Y. This is where the concept of trusted exists. Trusted devices (the device is authenticated and indicated as &amp;quot;trusted&amp;quot;), are allowed access to services. Untrusted or unknown devices may require &amp;#039;&amp;#039;&amp;#039;authorization&amp;#039;&amp;#039;&amp;#039; based on user interaction before it is allowed access to the services. This does not principally exclude that the &amp;#039;&amp;#039;&amp;#039;authorization&amp;#039;&amp;#039;&amp;#039; maight be give by an application automatically. Authorization always includes authentication. In [[security engineering]], &amp;#039;&amp;#039;&amp;#039;authorization&amp;#039;&amp;#039;&amp;#039; is the process by which an entity attempts to confirm that another entity is allowed to access a resource.&lt;br /&gt;
&lt;br /&gt;
The problem of authorization is often considered to be identical to that of [[authentication]]: however, there are many cases in which these two problems are different, although the process of &amp;#039;&amp;#039;&amp;#039;authorization&amp;#039;&amp;#039;&amp;#039; is based on [[identification]] and [[authentication]] processes.&lt;br /&gt;
&lt;br /&gt;
For example, it is often desirable to grant access without requiring a unique identity. Familiar examples of [[authorization token]]s include keys and tickets: they grant access without proving identity.&lt;br /&gt;
&lt;br /&gt;
Even when authorization is performed by using a combination of authentication and [[access control list]]s, the problems of maintaining the access control lists is non-trivial, and often represents as much administrative burden as proving the necessary user identities. It is often desirable to remove a user&amp;#039;s authorization: to do this with access control lists requires that the lists be updateable. Attacking the access control list updates can then compromise the entire system, and if any update is needed, communication systems are required, together with additional authorization and security systems to protect the access control list updates.&lt;br /&gt;
&lt;br /&gt;
It may also be desired to grant authorization in a way that is irrevocable: this is hard to do with access control list systems.&lt;/div&gt;</summary>
		<author><name>Bayarkhuu</name></author>
	</entry>
</feed>