Access Control Fundamentals
In information security, access control is imperative to ensure confidentiality, integrity, and availability. Controlling who has access to a system and the breadth of access a user has is vital to ensure the security of systems and data on the systems. Read this article to understand the terms access control, access, subject, and resource. Note the challenges, the principles, the criteria, and the practices used in access control.
9. Access Control Types
Each of the access control categories – administrative, physical and technical work at different levels, each at a different level of granularity and perform different functionalities based on the type.
The different types of access control are:
- Preventative- Avoid undesirable events from occurring
- Detective- Identify undesirable events that have occurred
- Corrective- Correct undesirable events that have occurred
- Deterrent- Discourage security violations
- Recovery- Restore resources and capabilities
- Compensative- Provide alternatives to other controls