What can be accomplished by storing on each subject a list of rights the subject has for every object?

What can be accomplished by storing on each subject a list of rights the subject has for every
object?

What can be accomplished by storing on each subject a list of rights the subject has for every
object?

A.
Object

B.
Capabilities

C.
Key ring

D.
Rights

Explanation:
Capabilities are accomplished by storing on each subject a list of rights the subject
has for every object. This effectively gives each user a key ring. To remove access to
a particular object, every user (subject) that has access to it must be “touched”. A
touch is an examination of a user’s rights to that object and potentially removal of
rights. This brings back the problem of sweeping changes in access rights.

Show Hint

Leave a Reply 1

Your email address will not be published. Required fields are marked *

Ahmed

Ahmed

Subjects can have a ‘Capability Table’ associated to them, which is kind of opposite to the ACL which is associated to an Object.

Reply