An official website of the United States government
Here’s how you know
Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock (
) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
https://www.nist.gov/people/david-ferraiolo
David Ferraiolo (Fed)
Group Manager for Secure Systems and Applications Group, Computer Scientist
Joanna DeFranco, David F. Ferraiolo, D. Richard Kuhn, Joshua D. Roberts
Sharing data between different organizations is a challenge primarily due to database management systems (DBMSs) being different types that impose different
David F. Ferraiolo, Joanna DeFranco, D. Richard Kuhn, Joshua D. Roberts
Distributed systems have always presented complex challenges, and technology trends are in many ways making the software designer's job more difficult. In
Chung Tong Hu, David F. Ferraiolo, David R. Kuhn, Adam Schnitzer, Kenneth Sandlin, Robert Miller, Karen Scarfone
[Includes updates as of August 2, 2019] This document provides Federal agencies with a definition of attribute based access control (ABAC). ABAC is a logical
Attribute-based access control systems rely upon attributes to not only define access control policy rules but also enforce the access control. Attributes need
Chung Tong Hu, David F. Ferraiolo, David R. Kuhn, Adam Schnitzer, Kenneth Sandlin, Robert Miller, Karen Scarfone
[Includes updates as of February 25, 2019] This document provides Federal agencies with a definition of attribute based access control (ABAC). ABAC is a logical
patent description This invention is a method that centrally manages Attribute-Based Access Control (ABAC) policies and locally computes and enforces decisions over those policies on objects that are locally protected using Access Control Lists (ACLs). The method is based on the expression of an
Patent Description This is a method that centrally manages Attribute-Based Access Control (ABAC) policies and locally computes and enforces decisions over those policies on objects that are locally protected using Access Control Lists (ACLs). The method is as follows: Centrally express an ABAC
Patent Description The Policy Machine is an access control framework that served as the basis for the development of an American National Standards Institute (ANSI)/ the International Committee for Information Technology Standards (INCITS – the central U.S. forum dedicated to creating technology