Definition
Discretionary Access Control
Discretionary access control (DAC) is an access control model in which subjects can freely delegate, revoke, and modify access rights to objects for which they have certain access rights.
Scope
Subjects can modify access rights for:
- objects they own
- objects for which they have a capability