Senses

About Privacy Terms Changelog GitHub

constraint · SynAc

TERM

constraint

A limitation on the function of an identity, role, or privilege. (See: rule-based access control.)

Updated

Jan 06, 2026

Senses

(I) /access control/▾

A limitation on the function of an identity, role, or privilege. (See: rule based access control.) Tutorial: In effect, a constraint is a form of security policy and may be either static or dynamic: "Static constraint": A constraint that must be satisfied at the time the policy is defined, and then continues to be satisfied until the constraint is removed. "Dynamic constraint": A constraint that may be defined to apply at various times that the identity, role, or other object of the constraint is active in the system.

A limitation on the function of an identity, role, or privilege. (See: rule-based access control.)

Tutorial: In effect, a constraint is a form of security policy and may be either static or dynamic:

"Static constraint": A constraint that must be satisfied at the time the policy is defined, and then continues to be satisfied until the constraint is removed.
"Dynamic constraint": A constraint that may be defined to apply at various times that the identity, role, or other object of the constraint is active in the system.

IETF RFC 4949 (Internet Security Glossary)

RFC 4949 — Internet Security Glossary (Version 2)

Accessed Jan 06, 2026Quoted

https://www.rfc-editor.org/rfc/rfc4949.txt

RFC 4949 is published by the IETF Trust and marked as "Distribution of this memo is unlimited". Verify IETF Trust copyright/licensing terms for reuse.

Source: IETF RFC 4949 (rfc-editor.org).

Bibliography

IETF RFC 4949 (Internet Security Glossary)
Accessed Jan 06, 2026Quoted
RFC 4949 — Internet Security Glossary (Version 2)
https://www.rfc-editor.org/rfc/rfc4949.txt
RFC 4949 is published by the IETF Trust and marked as "Distribution of this memo is unlimited". Verify IETF Trust copyright/licensing terms for reuse.
Source: IETF RFC 4949 (rfc-editor.org).