Access Control List (ACL)
A list of permissions attached to an object that specifies which users or system processes are granted access.
Practice this topic
Test your knowledge of access control concepts with exam-style practice questions.
Related Access Control terms
Authentication
The process of verifying the identity of a user, device, or system before granting access.
Authorization
The process of determining what resources or actions an authenticated user is permitted to access.
Multi-Factor Authentication (MFA)
A security mechanism that requires two or more independent credentials to verify a user's identity.
Single Sign-On (SSO)
An authentication scheme that allows a user to log in with a single set of credentials to access multiple applications.
Zero Trust
A security model that requires strict identity verification for every person and device attempting to access resources, regardless of network location.
Privilege Escalation
An attack where a user gains elevated access to resources that are normally protected, beyond what their assigned permissions allow.