Open Site Navigation
  • Shawn McKinney

No case studies on ABAC?

Updated: Aug 10, 2021

Don’t get me wrong, everyone needs at least RBAC, but it has limitations and doesn’t work well with instance data in the authorization expression. This perceived need leads me to look for case studies describing large-scale deployments of ABAC.

For example I’d like to read about:

  • A global phone company that controls access to their cellular accounts using ABAC.

  • National retail chain that uses it at the point-of-sale.

  • Multi-national financial institution controlling payments over the Internet.

  • Large medical facility controlling patient data in real-time.

Something with millions of users and thousands of requests a second. I was unsuccessful finding one like that. I did find a few published by vendors, single app usage, low volumes.

Why no case studies? I can speculate it’s because adoption has been disappointing slow.1


1. NCCOE discussion and impediments (to XACML/ABAC adoption). Martin Smith. April 4, 2016.

15 views0 comments

Recent Posts

See All

Jan 17, 2022 Introduction Symas OpenLDAP configured with LMDB has been extensively tested and its performance characteristics are well understood. Both OpenLDAP and LMDB’s scaling characteristics are

What's Different? OpenLDAP 2.5 represents the contribution of various Symas Open Source enhancements not previously adopted by the Project. Everything previously only available in Symas OpenLDAP Gold

  • Symas Blog RSS Feed
  • Symas on Facebook
  • Symas on Twitter
  • Symas Blog
  • Symas on LinkedIn
  • Symas YouTube Channel

Copyright © 2022, Symas Corporation. All rights reserved. Privacy Statement (updated Sept. 9, 2021)


Main Office: +1.650.963.7601
Fax: +1.650.390.6284



Office Hours:

8:00 AM - 5:00 PM ET

Office Location:

Symas Corporation
PO Box 391
Grand Junction, CO 81507 USA