Discretionary Access Control (DAC)

Discretionary Access Control (DAC) is a security system where the owner of a resource, like a file or database, decides who can access or modify it. The owner grants specific permissions to others, such as read or write access, based on their discretion. This approach offers flexibility, allowing owners to control access according to their needs, but it can also pose security risks if permissions are not carefully managed. Essentially, DAC empowers individuals to make security choices about their own data.