Security Model -------------- Need to strike a balance, not only between security & usability, but between security and ease of administration; there probably won't be dedicated security admin. person for a given organization - so ideally the security model would run itself, without the need for admins. We also need to remember the chicken and egg problem: it's going to be an uphill struggle to get people to enter data into the system - and arbitrary 'security' restrictions to editing/adding things is going to make that much worse. In general, I would favour trust & accountability over restrictions. Traditional ~~~~~~~~~~~ This would involve granting users rights to edit things, and having Admin users who can do the granting. Pros: ^^^^^ - Makes people feel comfortable, because it's a model that's familiar and makes intuitive sense/ is based on physical trust models & hierarchies. - Simpler to implement Cons: ^^^^^ - Needs Admin users to Administer the system - Can be complex & arbitrary - Assumes & optimizes for bad actors/ lack or trust. Wiki Style ~~~~~~~~~~ Lets anyone edit anything, but keeps a detailed changelog of everything and lets anyone roll back or undo any change, too. Pros: ^^^^^ - Makes it very easy to get started editing things - Provides a complete changelog/audit of all changes, allows easy undo of edits. - Simple to Administer - no permissions to set. Cons: ^^^^^ - Makes people feel un-comfortable, because it's a model that's un-familiar and isn't based on physical trust models & hierarchies that institutions are familiar with. People tend to assume that the output will be crap, despite the counter example of Wikipedia. - Much more complex to implement, because of keeping history and rolling back, etc... Could we liken this to collaboration instead, which is a term research institutions are familiar with? Are these mutually exclusive? ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Don't think so. We could probably have a hybrid model, that would work something like this: Everything is like a wiki - i.e. it remembers history of all changes, roll-back etc... but you can only edit: - Yourself - Other people in your lab - Your lab itself - Other people in your department? Also, have some Admin users who can edit anything in their organisation. How would editing other people's profiles work? ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Not sure. In a Wiki system, you could just do it and they could roll-back if wrong; but this could be annoying. It might also feel wrong for someone else to be editing your profile. Maybe they can make edit's, but they don't get applied, just suggested to you, with a single click apply/ignore option? This would be complex to implement, unless you're already using a wiki-style system, when it could probably re-use the built in revisions system to so this.