Access Control List


Permission to perform an operation on an object is given to a subject.

The user of a file system (subject) can only perform a selection of the actions (operations) possible on each of the files or directories (objects).

"User" may also be user group, and this a collection of users.

Access Control List architecture diagram


  • File systems: John may read and write file Personnel.doc

When should you use it?

  • This is the simplest form of access control
  1. Wikipedia