mandatory access control


Also found in: Dictionary, Thesaurus, Medical, Financial, Acronyms, Wikipedia.

mandatory access control

A system of access control that assigns security labels or classifications to system resources and allows access only to entities (people, processes, devices) with distinct levels of authorization or clearance. These controls are enforced by the operating system or security kernel. For example, the operating system will not convert a top secret document to a lower classification without a formal, documented process of declassification. Contrast with discretionary access control and role-based access control.
References in periodicals archive ?
-- Mandatory access control allows the system administrator to set up policies and accounts that will allow each user to have full access to the files and resources he or she needs, but not to other information and resources not immediately necessary to perform assigned tasks.
For enterprises distributing handheld devices running on the Pocket PC platform, PointsecO for Pocket PC provides enforceable mandatory access control along with data encryption, all of which can be centrally managed.
The company says it is aimed at businesses and organisations deploying handheld devices operating on the Windows CE platform who require enforceable and centrally managed data security, including mandatory access control and data encryption.