Naming conventions for system resources are important for access control because they:
ensure that resource names are not ambiguous.
reduce the number of rules required to adequately protect resources.
ensure that user access to resources is clearly and uniquely identified.
ensure that internationally recognized names are used to protect resources.
Naming conventions for system resources are important for the efficient administration of security
controls. The conventions can be structured, so resources beginning with the same high-level
qualifier can be governed by one or more generic rules. This reduces the number of rules required
to adequately protect resources, which in turn facilitates security administration and maintenance
efforts. Reducing the number of rules required to protect resources allows for the grouping of
resources and files by application, which makes it easier to provide access. Ensuring that resource
names are not ambiguous cannot be achieved through the use of naming conventions. Ensuring
the clear and unique identification of user access to resources is handledby access control rules,
not naming conventions. Internationally recognized names are not required to control access to
resources. Naming conventions tend to be based on how each organization wants to identify its