• Ashley Gerthoffer

Understanding Access Control Systems

Access Control

In a commercial environment, there are many different aspects of security. You want to keep your business safe from theft, and that includes who has access to your property as well as your computer files. A Sonitrol access control system can regulate who has access to both of these things.

Access control is broken down to two different types; physical and logical.

Physical access control refers to who has access to the actual company location, i.e. business buildings and offices.

Logical access control regulates who has access to the actual computer data. Access control can provide authorization identification, access approval, accountability of PINs and passwords, biometric scans and physical or electronic keys.

Access control can also be broken down into four different categories:

Mandatory Access Control: This is where only the administrator manages the access control. He or she defines the usage and access policies and this can not be modified by any other user. Mandatory Access Control is usually used in systems where confidentiality is key.

Discretionary Access Control: This is access control on more of a ‘need to know’ basis. It requires permission to those who need access at that time.

Role Based Access Control: Access here is limited and is contingent on the role of the individual within the company. The roles defined, and the access the individuals are granted can depend on job competency, authority and their responsibility in the company.