CERTIFIED-IN-CYBERSECURITY · Question #391
CERTIFIED-IN-CYBERSECURITY Question #391: Real Exam Question with Answer & Explanation
The correct answer is C: Only properly designated security administrators. In a Mandatory Access Control (MAC) system, security administrators are responsible for managing and controlling access. They are the ones who label subjects and objects within the system and determine access controls based on those labels (see the ISC2 Study Guide, Chapter 3, Mo
Question
Who controls access in a Mandatory Access Control (MAC) system?
Options
- AAny user with access to the system
- BExternal auditors
- COnly properly designated security administrators
- DThe CEO of the company
Explanation
In a Mandatory Access Control (MAC) system, security administrators are responsible for managing and controlling access. They are the ones who label subjects and objects within the system and determine access controls based on those labels (see the ISC2 Study Guide, Chapter 3, Module 3). The other options are incorrect. Any user (including the CEO) within the system does not have the authority to control access in a MAC environment. While external auditors may review the security controls, they are not responsible for controlling access within
Topics
Community Discussion
No community discussion yet for this question.