Discretionary access control

nouncandidate·updated May 9, 2026

GlossaryL1 — what DictionaryL2 — how used ThesaurusL3 — relations Universaleverything

A means of restricting access to objects (e.g., files, data entities) based on the identity and need-to-know of subjects (e.g., users, processes) and/or groups to which the object belongs. The controls are discretionary in the sense that a subject with a certain access permission is capable of passing that permission (perhaps indirectly) on to any other subject (unless restrained by mandatory access control).

polysemousMWE

Classifications

per-axis with provenance

Entity Type

Control95%rule-basedr:entity.control.safeguard.v1

?unassignedlast reviewed —

Sensitivity

—90%llm-generatedllm:claude-haiku-4-5

?unassignedlast reviewed —

Information Class

—90%llm-generatedllm:claude-haiku-4-5

?unassignedlast reviewed —

Variants

4 surface forms

acronym: DAC
plural: Discretionary access controls
possessive: Discretionary access control's
pluralpossessive: Discretionary access controls'

Continue to:Dictionary →How is this term used per framework?Thesaurus →How does this term relate to other terms?Universal →Everything in one page.