Access Control (Global)
High-quality technical overview of Access Control in the context of blockchain security.
Common mechanisms include: 1. ACLS: A list attached to an object specifying which users have permissions. 2. Capability Lists: A list attached to a user specifying which objects they can access. 3. Trust-based mechanisms: Often used in P2P networks. 4. Token-based mechanisms: Like OAuth2, which use a signed token to verify authorization without re-authenticating.
graph LR
Center["Access Control (Global)"]:::main
Rel_access_control_mechanisms["access-control-mechanisms"]:::related -.-> Center
click Rel_access_control_mechanisms "/terms/access-control-mechanisms"
Rel_access_control_security["access-control-security"]:::related -.-> Center
click Rel_access_control_security "/terms/access-control-security"
classDef main fill:#7c3aed,stroke:#8b5cf6,stroke-width:2px,color:white,font-weight:bold,rx:5,ry:5;
classDef pre fill:#0f172a,stroke:#3b82f6,color:#94a3b8,rx:5,ry:5;
classDef child fill:#0f172a,stroke:#10b981,color:#94a3b8,rx:5,ry:5;
classDef related fill:#0f172a,stroke:#8b5cf6,stroke-dasharray: 5 5,color:#94a3b8,rx:5,ry:5;
linkStyle default stroke:#4b5563,stroke-width:2px;
🧒 5살도 이해할 수 있게 설명
If Access Control is the rule 'Only teachers can go in the teacher's lounge', then the access control mechanism is the actual keypad on the door that requires a specific code that only teachers have.
🤓 Expert Deep Dive
Mechanisms are generally categorized into: 1. Discretionary mechanisms (ACLs on files). 2. Mandatory mechanisms (Security Labels in SELinux). 3. Role-based mechanisms (Active Directory groups). A key distinction in modern engineering is between 'Ambient Authority' (where access is implied by identity) and 'Object Capabilities' (where access is granted via a specific, unforgeable token or reference). Modern web security heavily relies on JSON Web Tokens (JWT) as a stateless mechanism for propagating authorization state across microservices.