Access Control For Access Controls

1206 Words5 Pages
Access control is simply a method that allows or denies the right to use to resources that is deemed to have a value worth protecting. Access controls define exactly who can interact with what, regarding what the subject may do during the interaction session. The basis is granting rights and privileges to a subject with respect to an object.
Access controls must be rooted in good policies and procedures with strong tools to implement them. To ensure complete protection of resources access controls are split up into two different phases. The first phase is about forming a strong access control policy to layout the ground work for the rest of the organizations policies .This phase of access controls should at least address which subjects have access to varying degrees of sensitive systems and data, for what reason, and for how long. Authorization is the process that drives the operation of this phase. Policy enforcement is the next phase granting or rejecting access based on authorization of the policy definition phase. To guarantee enforcement of policies this phase is split up into three distinct operations: identification, authentication, and accountability.
Well-reasoned authorization is the fundamental building blocks of formidable access controls. Regulating the access to resources is crucial for the success of an organization. Developing clear and concise policies will insure the prevention of security breaches from happening, as long as they firmly adhered to. These

More about Access Control For Access Controls

Get Access