Next: Access Control List (ACL)
Up: Access Control Mechanisms
Previous: Access Control Mechanisms
- Global table of ordered triples
(domain, object, permitted operations)
- User in domain D performs operation O on object F
hence, search table for entry (D,F,O)
- If entry found, operation permitted otherwise raise exception
- Problems : Could lead to a large table
Many entries if object accessible from many domains
Omer F Rana
Sun Feb 16 17:49:18 GMT 1997