Static access control rules have a hierarchy of precedence. When a DSA receives a request, the DSA tests whether to accept the request by using the applicable access control rule with the highest precedence, and ignores any other access control rules. The precedence levels are as follows:
Rules at this level grant access rights that cannot be taken away.
Rules at this level grant access rights that cannot be taken away.
Rules at this level deny access rights that have been given at a lower precedence.
Rules at this level grant access rights, but the rights can be taken away.
Rules at this level grant access rights, but the rights can be taken away.
Copyright © 2009 CA. All rights reserved. | Email CA about this topic |