1. Access control where the operating system enforces access based on security classification labels assigned by an administrator; users cannot modify labels even on files they own
2. Access control where the resource owner determines who can access their resources; default model in most commercial operating systems; security depends on owner decisions
3. Access control where users receive access rights by being assigned to roles or groups; access is implicit through group membership rather than individually granted
4. Access control where multiple simultaneous attributes from the subject, object, environment, and action are evaluated to make dynamic, context-aware access decisions
A. MAC (Mandatory Access Control)
B. DAC (Discretionary Access Control)
C. RBAC (Role-Based Access Control)
D. ABAC (Attribute-Based Access Control)