Access control (sometimes abbreviated as AC): * is "[l]imiting the flow of information from the resources of a system only to authorized persons, programs, processes or other system resources on a network. * is "[a] means to ensure that access to assets is authorized and restricted based on business and security requirements. * includes "[p]rocedures, physical barriers and security personnel provided to limit access to sensitive areas." * is "the granting or denying to a subject of certain permissions to access a resource (e.g., to view a certain file, to run a certain program)." * is "[p]revention of unauthorized use of a resource, including the prevention of use of a resource in an unauthorized manner." * is "[p]rotection of resources against unauthorized acces