The aim of the primitive is to provide an enforcement component for distributed attribute-based access control (ABAC) policies that ensures that authorized users always get access to the selected cloud resource (either data or service) whilst the access is refused to malicious parties, in the context of a multi-tenant cloud infrastructure.
Multi-tenancy Access Control (EPICA)
Secure Enforcement of Policies
Security Requirements Addressed:
Atos propietary license