Reading...
Play button
Play button
Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
11 Cards in this Set
- Front
- Back
|
discretionary access control (DAC)
|
enables the owner of the resource to specify which subjects can access specific resources. Data owners decide who has access to resources, and ACLs are
used to enforce these access decisions. |
|
|
nondiscretionary
|
Type of access control where access decisions are not made at the discretion of the user.
|
|
|
mandatory access control (MAC)
|
Operating systems enforce the system’s security policy through
the use of security labels |
|
|
role-based access control (RBAC)
|
Access decisions are based on each subject’s role and/or
functional position. |
|
|
Rule-based access control
|
uses specific rules that indicate what can and cannot happen between a subject and an object
|
|
|
content-dependent access control
|
Bases access decisions on the sensitivity of the
data, not solely on subject identity |
|
|
Context-dependent access control
|
Bases access decisions on the state of the
situation, not solely on identity or content sensitivity |
|
|
Access control list
|
Bound to an object and indicates what subjects
can access it and what operations they can carry out |
|
|
Access control matrix
|
Table of subjects and objects that outlines their
access relationships |
|
|
Capability table
|
Bound to a subject and indicates what objects that
subject can access and what operations it can carry out |
|
|
Restricted interface / Constrained Interface
|
Limits the user’s environment within the system,
thus limiting access to objects |
