A user account

A resource such as a file or directory

A permission list

A password manager

Discretionary Access Control 

Mandatory Access Control

Rule-based Access Control

Role-based Access Control

Separation of duties.

Authentication.

Accountability.

Least privilege.

Authorization → Identification → Authentication

Authentication → Identification → Authorization

Identification → Authorization → Authentication

Identification → Authentication → Authorization

The process of granting permissions after authentication.

The process of verifying a password.

The process of identifying a user.

The process of changing a user account name.

 It verifies the identity of a user before access is granted.

It assigns permissions to files and folders.

 It determines what a user is allowed to do after logging in.

It encrypts the data stored in a system.

Role-Based Access Control.

Discretionary Access Control.

Mandatory Access Control.

Rule-Based Access Control.

It is always stronger than biometrics.

It is vulnerable to brute-force and phishing attacks

It cannot be used on the internet.

It does not require a user to remember anything.

PIN.

Smart card.

Typing pattern.

Password.