Changes: Access control service

Revision as of 05:59, 20 September 2014

An access control service

“

[is a] security service that protects against a system entity using a system resource in a way not authorized by the system's security policy.^[1]

”

“

provides means to ensure that resources are accessed by subjects only in an authorized manner. Resources concerned may be the physical system, the system software, applications and data. ^[2]

”

"The access control service can be defined and implemented at different levels of granularity in the TMN: at agent level, object level or attribute level. The limitations of access are laid out in access control information: the means to determine which entities are authorized to have access; what kind of access is allowed (reading, writing, modifying, creating, deleting).^[3]

↑ IETF Network Working Group, Internet Security Glossary (RFC 4949) (Ver. 2) (Aug. 2007).
↑ ITU, "Compendium of Approved ITU-T Security Definitions," at 2 (Feb. 2003 ed.) (full-text).
↑ Id.

Revision as of 05:54, 12 September 2014 (edit) Mdscott (talk \| contribs) No edit summary ← Older edit		Revision as of 05:59, 20 September 2014 (edit) (undo) Mdscott (talk \| contribs) No edit summary Newer edit →
Line 1:		Line 1:
−	== ~~Definition~~ ==	+	== Definitions ==

	An '''access control service'''		An '''access control service'''