This is an examination. You must write the answer yourself without ANY discussion with anyone else. Your answers should be based on the material discussed in class. You are free to consult additional literature on the topic but your time is likely better spent answering the question based on the lectures and the class readings.
Provide a signed statement with your submission stating, I have not given help or taken help from anyone on this assignment.
There is only one question. Please answer it in less than 2 pages, single-spaced. Your answer should be a coherently written essay that flows and reads similar to a technical paper. Your solution should be prepared in soft copy, although diagrams may be hand-drawn. Please submit hard copy on the due date in class. If you cannot make it to class on the due date submit via email to sandhu@gmu.edu or fax to 253 563 3509 before the class.
1. Propose a model for decentralized permission-role administration based on the notion that resource owners should determine the permissions for each role with respect to the resources they own. A resource can be an application, a server, a network, etc. There is no unique answer to this question. Motivate why you think your model is of practical benefit.