0

I have a web application in which I am giving role based data access to the user,I use the concept of XACML based reverse querying, i.e

"A user want to access resource xyz, so under what condition he is allowed to do so?"

So, my question is how feasible it will be if I do not filter the data based on the policy in the server, instead push all data along with the policy to the client and let client handle the filtering the data, I wanted to do this because my server is a cloud based server and I do not want to put any computational overload in it, so wanted to know is their any drawback if I go with such approach?

4

2 に答える 2

1
  1. それは本当に安全ではありません
  2. 回線上のトラフィックの増加
  3. クライアントのロジックが増えるため、更新の場合、クラウド内の単一サーバーではなく、多くのクライアントを更新する必要があります。
于 2014-02-20T06:12:14.047 に答える