| definition | Process of deciding if a subject (person, program, device, group, role, etc.) is allowed to have access to or take an action against a resource. Authorisation relies on a trusted identity (authentication) and the ability to test the privileges held by the subject against the policies or rules governing that resource to determine if an action is permitted for a subject. | ||||||
|---|---|---|---|---|---|---|---|
| editorial note | Expert review decision, 2021-22: No review this cycle | ||||||
| type |
|
||||||
| in scheme |
|
||||||
| top concept of | rdmt original | ||||||