Fundamentals of Information Systems Security, 4th Edition

Formal Models of Access Control

Most users have encountered access control restrictions (some of the most visible being those protecting access to computer resources), such as when they have typed an incorrect password and been denied access. Because many ways are available for restricting access to resources, it is helpful to refer to models to help design effective access controls. Following are some of the formal models of access control:

Discretionary access control (DAC)—With DAC, the owner of the resource decides who gets in and changes permissions as needed; permissions can be transferred.
Mandatory access control (MAC)—With MAC, permission to access a system or any resource is determined by the sensitivity of the resource and the security ...

Get Fundamentals of Information Systems Security, 4th Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Fundamentals of Information Systems Security, 4th Edition by David Kim, Michael G. Solomon

Formal Models of Access Control

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly