The IT Law Wiki

Definitions[]

Access control software is

[s]ecurity software designed to detect and prevent unauthorized access, and to permit authorized access in an AIS.[1]
software, which is external to the operating system, [that] provides a means of specifying who has access to a system, which has access to specific resources, and what capabilities authorized users are granted.[2]
the control of system usage imposed by software controls. Such controls include system monitoring, user identification, user authentication and data integrity validations.[3]

Overview[]

Access control software can generally be implemented in different modes that provide varying degrees of protection such as denying access for which the user is not expressly authorized, allowing access which is not expressly authorized but providing a warning, or allowing access to all resources without warning regardless of authority.[4]

References[]