Difference between revisions of "Authorization (computer access control)"
Karl Jones (Talk | contribs) (→See also) |
Karl Jones (Talk | contribs) |
||
Line 1: | Line 1: | ||
'''Authorization''' or '''authorisation''' is the function of specifying [[access rights]] to [[resources]] related to [[information security]] and [[computer security]] in general, and to [[access control]] in particular. | '''Authorization''' or '''authorisation''' is the function of specifying [[access rights]] to [[resources]] related to [[information security]] and [[computer security]] in general, and to [[access control]] in particular. | ||
− | |||
− | |||
== Description == | == Description == | ||
Line 9: | Line 7: | ||
During operation, the system uses the access control rules to decide whether access requests from (authenticated) consumers shall be approved (granted) or disapproved (rejected). | During operation, the system uses the access control rules to decide whether access requests from (authenticated) consumers shall be approved (granted) or disapproved (rejected). | ||
− | Resources include individual files or an item's data, computer programs, computer devices and functionality provided by computer applications. | + | Resources include individual files or an item's [[data]], [[Computer program|computer programs]], computer devices and functionality provided by computer applications. |
− | Examples of consumers are computer users, computer programs and other devices on the computer. | + | Examples of consumers are [[User (computing)|computer users]], computer programs and other devices on the computer. |
== See also == | == See also == | ||
Line 17: | Line 15: | ||
* [[Access control]] | * [[Access control]] | ||
* [[Computer security]] | * [[Computer security]] | ||
+ | * [[Credential]] | ||
* [[Information security]] | * [[Information security]] | ||
* [[Password]] | * [[Password]] | ||
* [[Security Assertion Markup Language]] (SAML) | * [[Security Assertion Markup Language]] (SAML) | ||
+ | * [[User (computing)]] | ||
== External links == | == External links == | ||
* [https://en.wikipedia.org/wiki/Access_control Access control] @ Wikipedia | * [https://en.wikipedia.org/wiki/Access_control Access control] @ Wikipedia |
Revision as of 02:16, 29 January 2016
Authorization or authorisation is the function of specifying access rights to resources related to information security and computer security in general, and to access control in particular.
Description
More formally, "to authorize" is to define an access policy. For example, human resources staff is normally authorized to access employee records and this policy is usually formalized as access control rules in a computer system.
During operation, the system uses the access control rules to decide whether access requests from (authenticated) consumers shall be approved (granted) or disapproved (rejected).
Resources include individual files or an item's data, computer programs, computer devices and functionality provided by computer applications.
Examples of consumers are computer users, computer programs and other devices on the computer.
See also
- Access control
- Computer security
- Credential
- Information security
- Password
- Security Assertion Markup Language (SAML)
- User (computing)
External links
- Access control @ Wikipedia