Mandatory Access Control (MAC) is based on the classification level of the data. This looks at how much damage they could cause to the interest of the nation. These are as follows:
- Top secret: Highest level, exceptional grave damage
- Secret: Cause serious damage
- Confidential: Cause damage
- Restricted: Undesirable effects
Examples of Mandatory Access Control (MAC):
| Data types | Classification |
| Nuclear energy project | Top secret |
| Research and development | Secret |
| Ongoing legal issues | Confidential |
| Government payroll | Restricted |
- Custodian: The custodian is the person who stores and manages classified data.
- Security administrator: The security administrator is the person who gives access to classified data once clearance has been approved.
- Security enhanced Linux: SELinux is a project that was created with the intention of providing stricter security measures for access control and user permits, processes, files, and devices in Linux systems. The National Security Agency (NSA) in the United States published this as an open code under the GNU PNL license. This project was integrated in Linux's (LSM) security modules from the 2.6.0 version of the Linux kernel that was published in 2003.