Trivial Role-based Authorization-Context State-machines (TRACS)

About 6 months ago I posted some info on a project I had been working on
to eros-arch that aims to create a trivial incident respons ready
authorization system, using some concepts from role based systems, some
from capacility based systems, and some concepts that I believe to be new.
Since than I got some usefull input, and made some important changes to
the basic setup and concept naming. As one of the more usefull pieces
of input came from this list (Alan Karp), I thougth that posting my
revised setup to this list might again proof usefull.

One important thing that I am not quite sure of still, is if my context
owned rights(and lefts) should be clasified as capabilities. I first
thought they should, as I borrow quite some concepts, but now think
they should not, as they are not object owned 'right tickets'. I'm not
quite sure however.

http://www.xs4all.nl/~rmeijer/tracs.html

Any comments are extremely welcome.

T.I.A.

Rob J Meijer