Which access control method uses predefined rules set by an administrator, often applied in government?

The access control method that employs predefined rules set by an administrator, particularly in government settings, is mandatory access control (MAC). In MAC, access to resources is determined by the system, based on a set of policies established by an administrator. These policies typically define which users or systems have access to various data and applications based on classifications or security labels.

The strength of MAC lies in its strict enforcement of rules, which makes it particularly suited for environments where security is paramount, such as government agencies that handle sensitive information. In these settings, individual users do not have the ability to alter access controls, meaning that the system itself rigidly governs who has access to what, providing a high level of control and security.

Other methods like role-based access control (RBAC) or discretionary access control (DAC) involve more flexibility and user empowerment regarding permissions. In RBAC, access is determined by a user's role, which can be adjusted as necessary, and in DAC, the resource owner manages permissions, which is less stringent than MAC. Time-based access control is also not as relevant to the context of predefined rules as it focuses on restricting access based on time rather than fixed policies.