Before we get too far ahead of ourselves, let’s go over some basic definitions of
terms you will see often throughout this chapter:
•Subject Active entity that requests access to an object or the data
within an object. The subject is the actor.
•Object Passive entity being accessed, or the item being acted upon.
•Access Ability of a subject to do something, such as read, create, delete,
or modify. Access is also considered the flow of information between
a subject and object.
•Access control Security features that control how subjects and objects
communicate and interact with each other and the flow of information.
No comments:
Post a Comment