Chapter 21/22/23 Flashcards
Information Vector
Program viruses
Macro Viruses
Worms
Implicit Deny
Access controls should deny access by defualt
Discretionary Access Control (DAC)
Based on ownership
Owner is granted full control over the resource, meaning that he or she can modify its ACL to grant rights to others
Role-Based Access Control (RBAC)
A set of organizational roles are defined and users allocate to those roles
Mandatory Access Controls (MAC)
Based on the idea of security clearance levels and labels
Subjects are only permitted to access objects at their own clearance level or below
Rule-Based access control
Any sort of access control model where access control policies are determined by system rules rather than system users