Part 5 discusses noncryptographic implementation mechanisms. It focuses on the sharing of rights and information.
Chapter 13, “Design Principles,” presents eight basic design principles for security mechanisms. These principles underlie computer security mechanisms and apply to some extent to the policies that the mechanisms enforce.
Chapter 14, “Representing Identity,” discusses the representation of identity within a system. Identities include group and role representation of users, as well as the privileges they have or acquire.
Chapter 15, “Access Control Mechanisms,” presents the basic access control mechanisms and the various ways in which they are organized. These mechanisms can be discretionary or mandatory, ...