Access Controls

What Is a Subject? ........................................................................................4 Subject Group Considerations ..........................................................5

What Is an Object? .......................................................................................5 Object Group Considerations ...........................................................6

Discretionary Access Control ........................................................................6 Rule Set-Based Access Controls ........................................................7 Role-Based Access Controls ...............................................................7 Constrained User Interface ................................................................8 Content-Dependent Access Control ..................................................9 Context-Based Access Control ........................................................10 Temporal Isolation (Time-Based) Access Control ............................10

Nondiscretionary Access Control ................................................................11 Mandatory Access Control .........................................................................11 Separation of Duties ...................................................................................11