Database Security - Quiz 6

If an individual user can set an access control mechanism to allow or deny access to an object, that mechanism is a ________________.

When a system mechanism controls access to an object and an individual user cannot alter that access, the control is a ________________.

A security paradigm where users are granted access depending on their role in the organisation is called ________________.

The main drawback of DAC is ________________.

A state, i.e. an access matrix M, is said to ________________ the right r if there exists a command c that adds the right r into an entry in the access matrix that previously did not contain r.

A state of a protection system, that is, its matrix M, is said to be ________________ with respect to the right r if no sequence of commands can transform M into a state that leaks r.

In ________________, the subject is authorised to use a requested system resource indirectly because the objects in the system are referenced in terms of other objects.

In ________________, it explicitly stores all authorisations for all system objects whose access has been requested.

A computer program with an apparently or actually useful function that contains additional (hidden) functions that surreptitiously exploit the legitimate authorisations of the invoking process. ________________

________________ conditions the access to a given object based on its content.