Talk:Discretionary access control

From Wikipedia, the free encyclopedia

[edit] TCSEC is out of date

The definition given by the TCSEC is poorly written (which not a first for DoD documents) and confuses identity-based access control with DAC. IBAC can be either mandatory or discretionary. (Nor is DAC specific to unix-like systems, as you might be forgiven for thinking after reading the TCSEC). The part about DAC allowing a subject to pass permission to any other subject is sometimes (but not always) true, but DAC is more general. The intro should be rewritten to give a more general definition of DAC that doesn't necessarily reference the Orange Book definition. Gdlong (talk) 15:27, 29 January 2008 (UTC)

Views

Article
Discussion
Current revision

Interaction

About Wikipedia
Community portal
Recent changes
Contact Wikipedia
Donate to Wikipedia
Help

Talk:Discretionary access control

From Wikipedia, the free encyclopedia

[edit] TCSEC is out of date

Views

Navigation

Interaction

Search