Ver:
· Política de seguridad basada en la identidad
· Control de acceso basado en reglas
Política de
seguridad basada en reglas globales impuestas a todos los usuarios. Estas
reglas suelen depender de una comparación de la sensibilidad de los recursos a
los que se accede con los atributos correspondientes de los usuarios, de un
grupo de usuarios o de entidades que actúan en nombre de los usuarios.
[ISO-7498-2:1989]
A security policy
based on global rules imposed for all subjects. These rules usually rely on a
comparison of the sensitivity of the objects being accessed and the possession
of corresponding attributes by the subjects requesting access. Also known as discretionary
access control (DAC). [CNSSI_4009:2010]
(I) "A
security policy based on global rules [i.e., policy rules] imposed for all
users. These rules usually rely on comparison of the sensitivity of the
resource being accessed and the possession of corresponding attributes of
users, a group of users, or entities acting on behalf of users."
[ISO-7498-2] (Compare: identity- based security policy, policy rule, RBAC.)
[RFC4949:2007]
A security policy
based on global rules imposed for all subjects. These rules usually rely on a
comparison of the sensitivity of the objects being accessed and the possession
of corresponding attributes by the subjects requesting access. [NIST-SP800-33:2001]
A security policy
based on global rules imposed for all users. These rules usually rely on a
comparison of the sensitivity of the resources being accessed and the
possession of corresponding attributes of users, a group of users, or entities
acting on behalf of users. [ISO-7498-2:1989]
Politique de sécurité
fondée sur des règles globales imposées à tous les utilisateurs. Ces règles
s'appuient généralement sur une comparaison de la sensibilité des ressources
auxquelles on doit accéder avec les attributs correspondants d'utilisateurs,
d'un groupe d'utilisateurs ou d'entités agissant au nom d'utilisateurs. [ISO-7498-2:1989]
Temas relacionados