Sorry for not getting this done prior to going on vacation.
I have updated the Access Control Proposal to reflect the discussions that we
have had so far. I used David Pitfield's document as a basis, but extended the
Access Control Manager to support the abstract policy management and the access
I have removed the access control policy and access control entry node types
since there is no way to know how these will be implemented nor how they would
be mapped to nodes. I have used the Access Control Manager to set the policies
and entries as pattern to mirror the get policies on the manager pattern that
David used in the original proposal.