The IT Law Wiki
(Adding categories)
Line 1: Line 1:
 
== Definition ==
 
== Definition ==
   
'''Access level''' is the
+
'''Access level''' is
   
 
{{Quote|[a] category within a given [[security classification]] limiting entry or [[system]] [[connectivity]] to only [[authorized]] persons.<ref>[[CNSSI 4009]], at 1.</ref>}}
 
{{Quote|[a] category within a given [[security classification]] limiting entry or [[system]] [[connectivity]] to only [[authorized]] persons.<ref>[[CNSSI 4009]], at 1.</ref>}}
  +
  +
{{Quote|[t]he hierarchical portion of the [[security level]] used to identify the [[sensitivity]] of [[data]] and the clearance or [[authorization]] of [[user]]s. Note: The access level, in conjunction with the nonhierarchical categories, forms the [[sensitivity label]] of an object.<ref>[[Department of Defense]], [[National Computer Security Center]], Glossary of Computer Security Terms (NCSC-TG-004, Ver. 1) (Oct. 21, 1988).</ref>}}
   
 
== References ==
 
== References ==

Revision as of 22:55, 8 August 2014

Definition

Access level is

[a] category within a given security classification limiting entry or system connectivity to only authorized persons.[1]
[t]he hierarchical portion of the security level used to identify the sensitivity of data and the clearance or authorization of users. Note: The access level, in conjunction with the nonhierarchical categories, forms the sensitivity label of an object.[2]

References

  1. CNSSI 4009, at 1.
  2. Department of Defense, National Computer Security Center, Glossary of Computer Security Terms (NCSC-TG-004, Ver. 1) (Oct. 21, 1988).