File System ACLs
Resource x principal x right --> yes/no
Each resource (file or directory) has its own list
Each list has entries for various principals and rights
Groups as well as individual users
Notes:
If DAV ACLs are close to the underlying system model, then they are
- Contain fewer security holes
- Easier to explain, document?