Information System Authorization Task
Jump to navigation
Jump to search
A Information System Authorization Task is an authorization task that applies to an information system.
- Example(s):
- See: Information Security, Computer Security, Access Control, Authentication, Data.
References
2020
- (Wikipedia, 2020) ⇒ https://en.wikipedia.org/wiki/Authorization Retrieved:2020-3-31.
- Authorization is the function of specifying access rights/privileges to resources, which is related to information security and computer security in general and to access control in particular. More formally, "to authorize" is to define an access policy. For example, human resources staff are normally authorized to access employee records and this policy is usually formalized as access control rules in a computer system. During operation, the system uses the access control rules to decide whether access requests from (authenticated) consumers shall be approved (granted) or disapproved (rejected). Resources include individual files or an item's data, computer programs, computer devices and functionality provided by computer applications. Examples of consumers are computer users, computer Software and other Hardware on the computer.