Which access control model empowers the resource owner to manage access permissions, typically the creator of the resource?

The access control model that empowers the resource owner to manage access permissions is Discretionary Access Control (DAC). In this model, the resource owner has complete authority to dictate who is allowed to access their resources and what level of access they have. This flexibility enables the creator of a file or resource to make determinations on access rights, such as sharing the resource with specific users or groups while retaining the ability to modify those permissions at any time.

In DAC, the owner can grant permissions to other users, allowing for a personalized and adaptable approach to access control. This model contrasts with others such as Mandatory Access Control (MAC), where access rights are governed by a system-wide policy rather than individual discretion, making it less flexible. Attribute-Based Access Control (ABAC) uses attributes (like user roles, resource types, and environment conditions) to make decisions on access permissions but doesn't necessarily put the power directly in the hands of the resource owner. Role-Based Access Control (RBAC) assigns permissions based on user roles within an organization, which can limit the resource creator's ability to manage access.

Thus, DAC is distinct in its empowerment of individual resource owners, allowing them to retain control over their creations and decide who can access their resources.