摘要:Controlling access to data and information within organizations is an important concerntoday and also our aim. This paper is based on the concept of trust, which allows access control andcontrol of actions that can be applied to data and information in documents held in computer systems.Methods we have used are: defining trust and assigning trust levels. Results we have obtained aretrust policies based on trust hierarchies.