expand for answer

Access level

Hierarchical portion of the security level used to identify the sensitivity of information system data and the clearance or authorization of users. Access level, in conjunction with the nonhierarchical categories, forms the sensitivity label of an object. (. See category. )


Similar items:
An assigned classification or sensitivity level used in security models to determine the level of security required to protect an object and prevent unauthorized access. Information representing the sensitivity of a subject or object, such as UNCLASSIFIED or its hierarchical classification (CONFIDENTIAL, SECRET, TOP SECRET) together with any applicable nonhierarchical security categories (e. g. , sensitive compartmented information, critical nuclear weapon design information). Piece of information that represents the sensitivity of a subject or object, such as its hierarchical classification (CONFIDENTIAL,
[view]
Difference between the minimum clearance or authorization of information system users and the maximum sensitivity (e. g. ; classification and categories) of data processed by the system. The disparity between the minimum clearance or authorization of system users and the maximum sensitivity (e. g. , classification and categories) of data processed by a system.
[view]
A hierarchical classification and a set of nonhierarchical components that are used by mandatory access controls to define a process’s resource access rights. Information representing elements of the security label(s) of a subject and an object. Sensitivity labels are used by the trusted computing base (TCB) as the basis for mandatory access control decisions.
[view]
A type of MAC environment. A hybrid environment combines the hierarchical and compartmentalized concepts so that each hierarchical level can contain numerous subcompartments that are isolated from the rest of the security domain. A subject must have not only the correct clearance but also the need to know for the specific compartment in order to have access to the compartmentalized object.
[view]
Concept of processing information with different classifications and categories that simultaneously permits access by users with different security clearances and denies access to users who lack authorization. (. See cross domain solution. )Concept of processing information with different classifications and categories that simultaneously permits access by users with different security clearances, but prevents users from obtaining access to information for which they lack authorization.
[view]


There are no comments yet.

Authentication required

You must log in to post a comment.

Log in