Pos-335 Individual Assignment File Management Paper

743 WordsApr 24, 20133 Pages
Introduction The task of implementing a protection scheme that will provide controlled access to specific files in a system is not only an important but also a necessary task to ensure that the integrity as well as the availability of that file is maintained throughout. This paper is designed to put into perspective a protection scheme to facilitate the scenario where a system has 5000 user and 4990 of those users will need to have access to a particular file within the system. It will also provide clarity on Access control list (ACL’s) their roles as well as the different flavors available. It will also try to prove that proper implementation and utilizations of groups within a security scheme provides not only organization and…show more content…
Access control list provides greater control over file permissions which traditional UNIX files permissions falls short. Groups Creating and assigning users to groups in a protection scheme is not only a recommendation but also a standard for control all modern operating system. Users and machines alike can be assigned to groups and that group is then placed on ACLs as if they are individual users. Every group member inherits all the permissions granted to that group on the ACL. This assignment of users and machines to groups will solve many problems when addressing security issues, one such issue would be the assignment of permissions to massive number of people rather than individually Groups permissions are managed by the ACL that grants the user the permissions assigned by the ACL to take actions on objects. These permissions can be assigned fixed actions for a given group. For example, a User in the Accounts group could only submit, manage and view data pertaining to the accounts department. Someone in the Sales group also would only be able to view customer information, add or remove products or services from the customer account, etc. Permissions also can be set where there is an all-or-nothing, parameter where a member of a group manages files across multiple ACLs. For example the HR group can manage files associated with all employees from every department. Actions and permissions assigned

More about Pos-335 Individual Assignment File Management Paper

Open Document