Skip to Main Content
The ABAC (attribute-based access control) ATN (automated trust negotiation) system introduces two innovations first presented in detail in Winsborough et al. (2002) and further developed in Winsborough et al. (2002). First, to control transmissions that could disclose whether or not the negotiator has a given attribute, the system uses the notion of attribute acknowledgment policies (Ack policies). Second, it uses the trust-target graph (TTG) protocol, which supports a powerful, yet efficient ABAC credential language, Ack policies, and distributed credential storage. The ABAC ATN system has been designed and implemented under the Attribute-Based Access Control (ABAC) project at Network Associates Laboratories with collaboration from the Agile Management of Dynamic Collaborations (AMDC) project at Stanford University and SRI. Both projects are part of DARPA's Dynamic Coalitions program.