Science  People
Non User
  Locations  Timeline
Index: A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Home > Mandatory access control

Mandatory Access Control (MAC) is a technique to protect and contain computer processes, data, and system devices from mis-use. This extends the discretionary access controls of file system permissions and the concepts of users and groups. Traditional systems provide two basic user groups -- trusted administrators and untrusted users.

The goal is to define an architecture that requires the evaluation of all security-related labels and making decisions based upon the operations context and the same data labels. The Flask architecture coupled with MAC is an enabling technology of MLS-style systems.

Such a framework prevents an authenticated user or process at a specific classification or trust level to access information, processes, or devices in a different level. This provides a containment mechanism of users and processes, both known and unknown (an unknown program would be an untrusted application where device and file accesses should be monitored and/or controlled).

Clearly a framework that works to separate data and operations within a computer needs to be non-bypassable. It also needs to be evaluatable to determine the usefulness and effectiveness of a rule, always-invoked as to not bypass the system, and tamper-proof.

Historical MAC architectures

This is implemented in several security-focused operating systems, and is key in FLASK operating systems.

See Also



Read more »

Topics: Mandatory Access Control, Mandatory Swedish, Mandatory Labelling...

Mandatory SwedishThe secondary domestic language ( Finnish: toinen kotimainen kieli Swedish: det andra inhemska spraket is the official term for an unpopular subject in the schools of Finland. In Finnish, pakkoruotsi meaning "compulsory Swedish", is often used in referencMandatory labellingMandatory labelling of consumer products enables moral purchasing and avoidance of health problems like allergies. It is mandated in most developed nations, and increasingly in developing nations, especially for food products, e. Grade A" meats. In ChinaMandatory access controlMandatory Access Control (MAC) is a technique to protect and contain computer processes, data, and system devices from mis-use. This extends the discretionary access controls of file system permissions and the concepts of users and groups. Traditional sys
Mandatory retirement ageA mandatory retirement age is the age at which persons who hold certain jobs or offices are required by statute to step down, or retire. Typically, mandatory retirement ages are justified by the argument that certain occupations are either too dangerous (Mandatory detentionMandatory detention is the practise of detaining all unauthorised arrivals, asylum seekers, or illegal immigrants while their claim is processed, or with the intention of deporting them. Mandatory detention is practised in various forms in different countMandatory detention in AustraliaIn Australia, the term mandatory detention describes the legislation and actions of the Australian government to detain all persons entering the country by boat without a valid visa, including children. During the late 1990’s and early 2000’s, these unath
Non User