CA Top Secret provides separation of function as a management control to safeguard your system:
CA Top Secret provides for different levels of administrative authority over security functions. For example, one administrator might be authorized to create acid records, while another might be authorized to change data set and resource access rules. These authorities are controlled by privileges in the administrator's acid record. In an MLS system, the MSCA or an authorized SCA administrator is fully authorized to administer MLS.
CA Top Secret provides the ability to scope or limit privileges of users to the security functions or areas that pertain to them. For example, a scoped security administrator can perform administrative functions only for the acids defined in the group (scope) assigned to him
CA Top Secret lets you decide how to implement control over security. You can implement a system option to centralize the security environment in the hands of one or just a few people. Or you can delegate the responsibility by placing the means to control security to a wider group of individuals in a decentralized security environment.
|
Copyright © 2010 CA Technologies.
All rights reserved.
|
|