Policy-Based Access Control

nounid 3620·updated May 9, 2026

candidate

GlossaryL1 — what DictionaryL2 — how used ThesaurusL3 — relations Universaleverything

A form of access control that uses an authorization policy that is flexible in the types of evaluated parameters (e.g., identity, role, clearance, operational need, risk, and heuristics).

MWE

Classifications

per-axis with provenance

Entity Type

Control92%rule-basedr:entity.control.safeguard.v1

Sensitivity

unclassified

Information Class

unclassified

Variants

4 surface forms

acronym: PBAC
plural: Policy-Based Access Controls
possessive: Policy-Based Access Control's
pluralpossessive: Policy-Based Access Controls'

Framework definitions

2 senses across 2 frameworks

NISTIR 7298: Glossary of Key Information Security Terms, Revision 21 senseview framework →

§1: A form of access control that uses an authorization policy that is flexible in the types of evaluated parameters (e.g., identity, role, clearance, operational need, risk, and heuristics).

CNSSI-4009 (Glossary of Information Assurance Terms)1 senseview framework →

§1: A form of access control that uses an authorization policy that is flexible in the types of evaluated parameters (e.g., identity, role, clearance, operational need, risk, and heuristics).

Outgoing relationships

term as subject — 0 triples

No outgoing triples

This term is not the subject of any RDF-style relationship yet.

Incoming relationships

term as object — 0 triples

No incoming triples

No other term currently asserts a relationship to this one.