Types of Access Control

Attribute-based access control (ABAC)

is a dynamic, context-based policy that defines access based on policies granted to users. The system is used in identity and access management (IAM) frameworks.

Discretionary access control (DAC)

models allow the data owner to decide access control by assigning access rights to rules that users specify. When a user is granted access to a system, they can then provide access to other users as they see fit.

Mandatory access control (MAC)

places strict policies on individual users and the data, resources, and systems they want to access. The policies are managed by an organization’s administrator. Users are not able to alter, revoke, or set permissions.

Role-based access control (RBAC)

creates permissions based on groups of users, roles that users hold, and actions that users take. Users are able to perform any action enabled to their role and cannot change the access control level they are assigned.

Break-glass access control

access control involves the creation of an emergency account that bypasses regular permissions. In the event of a critical emergency, the user is given immediate access to a system or account they would not usually be authorized to use.

Rule-based access control

approach sees a system admin define rules that govern access to corporate resources. These rules are typically built around conditions, such as the location or time of day that users access resources. 

Physical access control

Bouncers can establish an access control list to verify IDs and ensure people entering bars are of legal age.Subway users scan cards that immediately recognize the user and verify they have enough credit to use the serviceEmployees need to scan a keycard or badge to verify their identity before they can access the building.