Access Control

Limiting access to information system resources only to authorized users, programs, processes, or other systems. The mechanism by which subjects are granted or restricted access to objects. It includes hardware, software, and organizational policies or procedures that identify and authenticate subjects, verify authorization to objects, and monitor or record access attempts. The process of allowing only authorized users, programs, or other computer system (i. e. , networks) to access the resources of a computer system. A mechanism for limiting the use of some resource (system) to authorized users.