Access Control Policies and Mechanisms Flashcards

1
Q

How do we typically view a system as?

A

Subjects (users) and objects (resources). Where subjects do actions on objects.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is an access control policy?

A

Specification on how each subject can use each object.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Define the idea for an access control matrix:

A
  • Resources to be protected are called objects
  • Every object is within one ore more protected domains
  • A domain specifies what operations are permitted on the objects it contains.
  • Authorization to perform an operation on an object in a domain is called an access right.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are static domains?

A

A user always operates in the same domain.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What are dynamic domains?

A

A user can switch from one domain to another

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is the matrix for an access control matrix?

A
  • Rows represent the domains
  • Columns correspond to the objects
  • Matrix entries specify the access rights to an object in the corresponding domain.
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is the idea behind the HRU access control policy?

A

Describes a protection system using an access matrix:
- Rows: the subjects in the system
- Coloumns: the objects in a system.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

How is access controlled in HRU?

A

A subject is allowed to perform an operation on an object only if it has an access right.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

How does the HRU allow change?

A
  • Subjects and object can be created or destroyed
  • Access rights can be entered or deleted from the matrix
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What does a reference monitor do?

A

Controls access to system objects.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is a mechanisms used for?

A

Required to enforce the access control policy.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

What are the two access mechanisms?

A
  1. Storing the matrix in protected memory
  2. Represent the matrix as an access list
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What are the advantages of access mechanisms?

A
  • You can specify rights available in every domain
  • Reduce the total amount of storage space required
  • Increase efficiency
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What are the disadvantages of access mechanisms?

A

Must be stored in memory, protected and searched

How well did you know this?
1
Not at all
2
3
4
5
Perfectly