What term is used to refer to a user or process that requests access to a resource?

The term used to refer to a user or process that requests access to a resource is "Subject." In the context of information security and access control models, a subject is an active entity that can perform operations on objects, which are the resources being accessed, such as files, databases, or devices.

When discussing access control, it's essential to differentiate between subjects and objects. Subjects initiate requests for services or access, while objects are the targets of those requests. Properly identifying subjects ensures that security policies can be enforced effectively, determining who is permitted to access specific resources and under what conditions.

In various access control frameworks, this distinction helps ensure that the right individuals or processes have the necessary permissions to perform their tasks while safeguarding the integrity and confidentiality of the system. Thus, understanding the role of a subject is crucial for grasping how access control mechanisms work in network defense and security scenarios.