Reference monitor: A critical component of an access control system. It’s responsible for regulating interactions between subjects (users or processes) and objects (resources) within a system. This is done by enforcing an access control policy that determines who or what can access certain resources and what operations they can perform. Its design must be tamper-proof and constantly active to ensure reliable enforcement of security policies.
Categories: CC D5: Security Operations | CCSP D3: Cloud Platform and Infrastructure Security | CISM D3: Information Security Program | CISSP D3: Security Architecture and Engineering | Security+ D3: Security Architecture | SSCP D1: Security Concepts and Practices
« Back to Glossary Index