Clark Wilson Model: CISSP Domain –  Security Engineering

Describes a system of separation where a user is not given direct access to a resource but instead to an interface that can access the resource.  The best example I can think of is when you go to a website that is primarily powered by a database, the website codebase accesses the database while you access the website.  This way you are able to access the resource but only through an intermediary.

My Video