AAA overview

Access control is an optional service on the SENSEI test platform. Each public interface in the system can be access controlled or not, at the owner's discretion. Two basic components are required in the system to enable access control:

• an identity provider, which in the SENSEI architecture is a Security Token Service
• an access control decision making function, which in the SENSEI architecture is a AAA block

Table of Contents

1. AAA overview
2. How-to: adding access control to my REP
   1. Choosing the form of access control
   2. Defining an access policy
   3. Registering the policy
   4. Enforcing the AAA decision

How-to: adding access control to my REP

Choosing the form of access control

privilege or payment based tbd

Defining an access policy

needs to refer to the STS role list tbd

Registering the policy

selection of AAA block registration of policy changing / removing the policy tbd

Enforcing the AAA decision

switching on the right bits in the REP tbd