Revision e3cd517687b475c84bc966cd8fd78267300c0a88 (click the page title to view the current version)

Zugangskontrolle

Changes from e3cd517687b475c84bc966cd8fd78267300c0a88 to 2838be11b9e22f4d495403eac14c0456e1fc8f20

---
categories: Themenbereich_Industrie_40 Alphabet_Z Status_in_Arbeit WORK_allgemein WORK_DISCUSS
categories: Themenbereich_Industrie_40 Alphabet_Z WORK_allgemein Status_Vor_Annahme_FA_721
toc: no
...

> tbd
> Schutz von Systemressourcen gegen unauthorisierten Zugriff; ein Prozess, durch den die Nutzung von Systemressourcen gemäß einer Sicherheitsrichtlinie geregelt wird und nur autorisierten Stellen (Benutzern, Programmen, Prozessen oder anderen Systemen) gemäß dieser Richtlinie gestattet ist


### Quelle

>  [SOURCE: IEC TS 62443-1-1]
>  [SOURCE: IEC TS 62443-1-1:2009]

---

# access control

> protection of system resources against unauthorized access; a process by which use of system resources is regulated according to a security policy and is permitted by only authorized entities (users, programs, processes, or other systems) according to that policy 
> protection of system resources against unauthorized access; a process by which use of system resources is regulated according to a security policy and is permitted by only authorized entities (users, programs, processes, or other systems) according to that policy

### source

> [SOURCE: IEC TS 62443-1-1]
>  [SOURCE: IEC TS 62443-1-1:2009]


---

ToDo
:   attribute/role-based access control
Kommentare
:   
    - Webmeeting 15.10.20
        - Definition wie in VWiD aus IEC 62443 übernommen
    - Definition vor Webmeeting 15.10.20
        - protection of system resources against unauthorized access; a process by which use of system resources is regulated according to a security policy and is permitted by only authorized entities (users, programs, processes, or other systems) according to that policy [SOURCE: IEC TS 62443-1-1]
    - Webmeeting 4.2.19: 
         - Kategoriezuordnung diskutiert
         - Anfrage AG3 + VwiD. Security Begriffe relevant für Glassar?
    - Webmeeting, 15.6.18
         - -> zurückstellen und in sich geschlossen als Themenfeld definieren
         - Priorität 1, Erst definieren, wenn in sich geschlossen
         - ???
         - IEV -> nix
         - Duden -> nix
         - IIC Glossary/ ISO/IEC 27000:2016
             - means to ensure that access to assets is authorized and restricted based on business and security requirements 
             - note: access control requires both authentication and authorization
         - Sicherheit umfasst
             Authentification
             Alias management
             History
             Authorization
             Access control