This is the multi-page printable view of this section. Click here to print.
Access Control Mechanisms
1 - Role-Based Access Control (RBAC)
- Defined Roles: Student, Educator, Administrator.
- Permission Levels: Restrict which categories of data each role can view or edit.
- Audit Trails: Maintain logs for every data access event.
2 - Authentication Protocols
- MFA: Require more than one factor for secure login.
- Session Management: Enforce idle timeouts and re-validation for sensitive actions.
- Credential Security: Recommend strong passwords or passphrases, updating regularly.