A Guide to Understanding Discretionary Access Control in Trusted Systems

Abstract

One of the features of the Criteria that is required of a secure system is the enforcement of discretionary access control (DAC). DAC is a means of restricting access to objects based on the identity of subjects and/or groups to which they belong. The controls are discretionary in the sense that a user or process given discretionary access to information is capable of passing that information along to another subject. This guide discusses issues involved in designing, implementing and evaluating DAC mechanisms. Its primary purpose is to provide guidance to manufacturers on how to select and build effective DAC mechanisms.

Open PDF

Document Details

Document Type
Technical Report
Publication Date
Sep 30, 1987
Accession Number
ADA392813

Entities

People

  • Carole S. Jordan

Tags

Communities of Interest

  • Cyber
  • Space

DTIC Thesaurus Topics

  • Auditing
  • Computer Access Control
  • Computer Programming
  • Computer Programs
  • Computers
  • Configuration Management
  • Cybersecurity
  • Department Of Defense
  • Directories
  • Environment
  • Hierarchies
  • Identities
  • Operating Systems
  • Security
  • Trojan Horse
  • User Friendly

Readers

  • Cybersecurity.
  • Systems Analysis and Design