An active entity (a physical person, an organization or moral person, a process or device) whose identity attributes are digitally recorded and used for transactions or other purposes. A subject may cause information to flow among objects or change system state.
A subject is the term used to identify a running process, a program in execution. Each subject assumes the identity and the privileges of a single principal. A principal may launch several processes within a single login session and thus will be associated with multiple subjects, each of which inherits the identity of the login session. Figure 1.2 illustrates the relationships between a user, a principal, and a subject.
Subject: An active entity, generally in the form of a person, process, or device that causes information to flow among objects (see below) or changes the system state [NCSC88].