Definition
The development of an access control system requires the definition of the high-level rules (policies) used to verify whether an access request is to be granted or denied. A policy is then formalized through a security model and is enforced by an access control mechanism.
Background
An important requirement of any computer system is to protect its data and resources against unauthorized disclosure (secrecy) and unauthorized or improper modifications (integrity), while at the same time ensuring their availability to legitimate users (no denials of service) [3]. The problem of ensuring protection has existed since information has been managed. A fundamental component in enforcing protection is represented by the access controlservice. Access control is the process of controlling every request to a system and determining, based on...
This is a preview of subscription content, log in via an institution.
Buying options
Tax calculation will be finalised at checkout
Purchases are for personal use only
Learn about institutional subscriptionsRecommended Reading
Anderson JP (1972) Computer security technology planning study. Technical Report ESD-TR-73-51. Electronic System Division/AFSC, Bedford, MA, October 1972
Landwehr CE (1981) Formal models for computer security. ACM Comput Surv 13(3):247–278
Samarati P, De Capitani di Vimercati S (2001) Access control: policies, models, and mechanisms. In: Focardi R, Gorrieri R (eds) Foundations of security analysis and design. Lecture notes in computer science, vol 2171. Springer, Heidelberg
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2011 Springer Science+Business Media, LLC
About this entry
Cite this entry
De Capitani di Vimercati, S. (2011). Access Control Policies, Models, and Mechanisms. In: van Tilborg, H.C.A., Jajodia, S. (eds) Encyclopedia of Cryptography and Security. Springer, Boston, MA. https://doi.org/10.1007/978-1-4419-5906-5_806
Download citation
DOI: https://doi.org/10.1007/978-1-4419-5906-5_806
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-4419-5905-8
Online ISBN: 978-1-4419-5906-5
eBook Packages: Computer ScienceReference Module Computer Science and Engineering