Related Concepts
Definition
Mandatory access control policies (MACs) control access based on mandated regulations determined by a central authority.
Theory
With a mandatory access control policy, access decisions are made by a central authority [1]. The most common form of mandatory policy is the multilevel security policy , based on the classifications of subjects and objects in the system. Objects are passive entities storing information. Subjects are active entities that request access to the objects. Note that there is a distinction between subjects of the mandatory policy and the authorization subjects considered in the discretionary policies. While authorization subjects typically correspond to users (or groups thereof), mandatory policies make a distinction between users and subjects. Users are human beings who can access the system, while subjects are processes (i.e., programs in execution) operating on...
This is a preview of subscription content, log in via an institution to check access.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Recommended Reading
Samarati P, De Capitani di Vimercati S (2001) Access control: policies, models, and mechanisms. In: Focardi R, Gorrieri R (eds) Foundations of Security Analysis and Design, LNCS, vol 2171. Springer, Heidelberg
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2011 Springer Science+Business Media, LLC
About this entry
Cite this entry
De Capitani di Vimercati, S., Samarati, P. (2011). Mandatory Access Control Policy (MAC). In: van Tilborg, H.C.A., Jajodia, S. (eds) Encyclopedia of Cryptography and Security. Springer, Boston, MA. https://doi.org/10.1007/978-1-4419-5906-5_822
Download citation
DOI: https://doi.org/10.1007/978-1-4419-5906-5_822
Publisher Name: Springer, Boston, MA
Print ISBN: 978-1-4419-5905-8
Online ISBN: 978-1-4419-5906-5
eBook Packages: Computer ScienceReference Module Computer Science and Engineering