Authorization

Authorization refers to the security mechanism responsible for determining and enforcing the actions authenticated users are permitted to perform within a computer system. The primary forms of authorization include DAC, MAC, and RBAC. DAC (Discretionary Access Control) governs access by utilizing ACLs (Access Control Lists) on individual resource objects, where users are enumerated alongside the permissions or privileges granted or denied to them. MAC (Mandatory Access Control) regulates access using classification or clearance labels assigned to both subjects and objects, allowing only those subjects with equivalent or superior clearance to access resources. RBAC (Role-Based Access Control) manages access by associating permissions and privileges with specific job roles, granting access based on the role's requirements to fulfill particular tasks or responsibilities.