Access Mediation

Description

Access mediation is the process of granting or denying specific requests to: 1) obtain and use information and related information processing services; and 2) enter specific physical facilities (e.g., Federal buildings, military establishments, border crossing entrances). Access mediation decisions should enforce least privilege by granting access for scoped durations to prevent privilege creep and, where applicable, implement just-in-time (JIT) access. Denial decisions may prevent initial access or terminate access that has already been granted, ensuring continuous enforcement of security policies.

Technical Details

Framework	MITRE D3FEND
Ontology URI	d3f:AccessMediation
Local Identifier	AccessMediation
Publication Status	Published on D3FEND website

Relationships

Child Concepts

D3-IOPR IO Port Restriction
D3-PAM Physical Access Mediation
D3-NAM Network Access Mediation
D3-NRAM Network Resource Access Mediation
D3-SCF System Call Filtering
D3-OPR Operating Mode Restriction
D3-CTS Credential Transmission Scoping

Related Techniques

D3-PAM Physical Access Mediation
D3-LAMED LAN Access Mediation
D3-NAM Network Access Mediation
D3-NRAM Network Resource Access Mediation
D3-RFAM Remote File Access Mediation
D3-EBWSAM Endpoint-based Web Server Access Mediation
D3-WSAM Web Session Access Mediation
D3-LFAM Local File Access Mediation
D3-RAM Routing Access Mediation
D3-PBWSAM Proxy-based Web Server Access Mediation

References

For the official documentation and additional resources, visit the MITRE D3FEND website.

View on MITRE D3FEND