Re: Milestone 2: authentication and authorization

From: Karl Fogel <kfogel_at_galois.collab.net>
Date: 2000-12-14 22:03:03 CET

Branko =?ISO-8859-2?Q?=C8ibej?= <brane@xbc.nu> writes:
> (Just an aside here: authentication and authorization are not two sides
> of the same coin, so we should be careful about using both terms in the
> same breath. Authorization can be useful without authentication, and
> vice versa. But I'm sure you now that.)

I can understand authentication being useful without authorization,
but the reverse still eludes me. How can you authorize anything
without knowing who you're dealing with? (I guess you could put a
blanket `read-only for everyone' permission on something, but that's
pretty limited functionality).

Anyway, yeah, they both begin with "auth" so that's a clear sign we
should consider them together. :-)
Received on Sat Oct 21 14:36:17 2006

This message: [ Message body ]
Next message: Bill Tutt: "RE: CVS update: subversion/subversion/libsvn_fs txn-table.c"
Previous message: Branko Èibej: "Re: Milestone 2: authentication and authorization"
Maybe in reply to: Ben Collins-Sussman: "Milestone 2: authentication and authorization"
Next in thread: Branko Èibej: "Re: Milestone 2: authentication and authorization"
Reply: Branko Èibej: "Re: Milestone 2: authentication and authorization"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]