What are the four key principles of access control referred to as?

The four key principles of access control are identification, authentication, authorization, and accountability.

Identification is the process by which a user, device, or system presents a unique identifier, such as a username, to indicate who they are. Following identification, authentication serves to verify that the claimed identity is indeed valid, usually through mechanisms like passwords, biometrics, or security tokens.

Once the user is identified and authenticated, authorization determines what resources or information they are permitted to access. This involves assigning roles or permissions that define the actions a user can perform within the system.

Finally, accountability ensures that the actions of users can be traced and audited. This principle is vital for maintaining security and for compliance purposes. It allows organizations to track who accessed what data and when, which is crucial for incident response and auditing.

In contrast, the other choices either mix up these concepts or substitute terms that do not accurately reflect the recognized principles in access control. For example, using "verification" instead of "authentication" changes the meaning, as verification can refer to validating information rather than specifically confirming identity. Similarly, using terms like "access" or "assessment" does not align with the foundational principles recognized in access control frameworks.