Access Policy

06/03/2018 | Posted by: | Subject:

Policy that defines how access rights are granted and removed. More formally, “to authorize” is to define an access policy. For example, human resources staff is normally authorized to access employee records and this policy is usually formalized as access control rules in a computer system. During operation, the system uses the access control rules to decide whether access requests from (authentication) shall be approved (granted) or disapproved (rejected).