Which aspect does Discretionary Access Control (DAC) focus on?

Discretionary Access Control (DAC) primarily emphasizes the access control decisions made by the owner or possessor of an object, such as files or resources. In a DAC system, users can control who has access to their resources by granting or restricting permissions based on their individual preferences. This user-centric model allows the creator of the data or the owner of the resource to determine who may access it and what kind of access is permitted.

For example, if a user creates a file, they have the authority to decide which other users can read, edit, or delete that file. This flexibility and the ability to make personal decisions regarding access is a defining characteristic of DAC.

In contrast, other access control methodologies may focus more on strict policies and rules set by system administrators or overarching security protocols rather than individual owner decisions. While user permissions and review processes are important, they do not capture the essence of DAC, which centers on the discretion and autonomy of the resource owner.