Policy Based Access Control is a strategy for managing user access to one or more systems, where business classification of users is combined with Policies to determine what access Privileges a user should have. Theoretical privileges are compared to actual privileges, and differences are automatically applied to Managed Systems.

Return to IT Security Concepts