The Authorization and Access Control Services provide functionality to grant or deny access to information processing services, data and physical facilities. They enforce information security and management policies by ensuring individuals only access those resources they are entitled to use and then only for approved purposes.
The request for access includes the resource and the type of desired access, e.g. reading, writing, opening. The authorization decision is based on the access control rule sets, resulting from privilege management, taking into account the level of assurance of entity's identity determined by the utilized authentication mechanism.
|
|
UUID | a39e7c43-91c4-4a22-9377-9909bb3f8df8 |
stereotype | Taxonomy Element |
C3T UUID | a39e7c43-91c4-4a22-9377-9909bb3f8df8 |
C3T URL | https://tide.act.nato.int/mediawiki/taxonomy/index.php/CR-1007 |
C3T Version | Generated from the Taxonony Wiki on 8 December 2022 |
C3T Date | 8 December 2022 |
Creator | HQ SACT |
Publisher | HQ SACT |
Classification | Unmarked |
Policy Identifier | Public |