DAC (Discretionary Access Control)

Discretionary Access Control (DAC) is a security approach where the owner of a resource, such as a file or database, has the authority to decide who can access or modify it. It allows the owner to set permissions, like read or write rights, for specific users or groups. This method gives flexible control but can be vulnerable if permissions are not managed carefully, potentially allowing unauthorized access. Essentially, DAC empowers resource owners to determine access levels, balancing ease of management with the need for security oversight.