![]() ![]() Access control mechanisms based on the notion of access control matrix typically only control whether each single access is authorized however, they do not control where the data flow once have been accessed. An important motivation for the mandatory access control is to control the flow of information once the information has been accessed. Unlike the access control models based on the notion of access control matrix, in the mandatory access control, the access control decisions are based on specific relationships between the subject requesting access and the object to which access is requested. Elisa Bertino, in Handbook on Securing Cyber-Physical Critical Infrastructure, 2012 23.2.2 Mandatory Access Control Model
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |