Jump to content

Discretionary access control

From Wikipedia, the free encyclopedia
This is an old revision of this page, as edited by CISSP Researcher (talk | contribs) at 05:19, 29 October 2005. The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

Discretionary Access Control (DAC) defines basic access control policies to objects in a filesystem.

Generally, these are done at the discretion of the object owner -- file/directory permissions and user/group ownership.

The Telecom Glossary defines DAC as "A means of restricting access to objects based on the identity and need-to-know of users and/or groups to which the object belongs. Controls are discretionary in the sense that a subject with a certain access permission is capable of passing that permission (directly or indirectly) to any other subject."


Template:CISSP-Stub

Retrieved from "https://en.wikipedia.org/w/index.php?title=Discretionary_access_control&oldid=26768447"