The purpose of this document is to provide Federal agencies with background information on access control (AC) properties, and to help access control experts improve their evaluation of the highest security AC systems. This document discusses the administration, enforcement, performance, and support properties of AC mechanisms that are embedded in each AC system. (Even though this document covers most of the essential AC properties, the listed properties are not necessarily complete.) This document extends the information in NIST IR 7316, Assessment of Access Control Systems [NISTIR 7316], which demonstrates the fundamental concepts of policy, models, and mechanisms of AC systems.
The purpose of this document is to provide Federal agencies with background information on access control (AC) properties, and to help access control experts improve their evaluation of the highest security AC systems. This document discusses the administration, enforcement, performance, and support...
See full abstract
The purpose of this document is to provide Federal agencies with background information on access control (AC) properties, and to help access control experts improve their evaluation of the highest security AC systems. This document discusses the administration, enforcement, performance, and support properties of AC mechanisms that are embedded in each AC system. (Even though this document covers most of the essential AC properties, the listed properties are not necessarily complete.) This document extends the information in NIST IR 7316, Assessment of Access Control Systems [NISTIR 7316], which demonstrates the fundamental concepts of policy, models, and mechanisms of AC systems.
Hide full abstract
Keywords
Access Control; Authorization; Policy; Computer Security;