Requirements

Solution Wishlist

• General, not hard-coded domain-specific logic.
• Simple and reliable: no query rewrites.
• Supports attribute, policy, and relationship-based access control.
• Not tied to a particular triple store.
• Supports partial results instead of only “computer says no”.
• Up to date: revoke bad actors and onboard new employees immediately.
• No race conditions between policy, data, and decisions.