| (I) A security service that protects against a system entity using
a system resource in a way not authorized by the system's security
policy; in short, protection of system resources against
unauthorized access. (See: access control, discretionary access
control, identity-based security policy, mandatory access control,
rule-based security policy.)
(C) This service includes protecting against use of a resource in
an unauthorized manner by an entity that is authorized to use the
resource in some other manner. The two basic mechanisms for
implementing this service are ACLs and tickets.
|
