CISSP-ISSMP · Question #213
CISSP-ISSMP Question #213: Real Exam Question with Answer & Explanation
The correct answer is B: Discretionary Access Control. In the discretionary access control, an authority, within limitations, specifies what objects can be accessed by a subject. Answer option D is incorrect. In the mandatory access control, a subject's access to an object is dependent on labels. Answer option A is incorrect. In the
Question
In which of the following mechanisms does an authority, within limitations, specify what objects can be accessed by a subject?
Options
- ARole-Based Access Control
- BDiscretionary Access Control
- CTask-based Access Control
- DMandatory Access Control
Explanation
In the discretionary access control, an authority, within limitations, specifies what objects can be accessed by a subject. Answer option D is incorrect. In the mandatory access control, a subject's access to an object is dependent on labels. Answer option A is incorrect. In the role-based access control, a central authority determines what individuals can have access to which objects based on the individual's role or title in the Answer option C is incorrect. The task-based access control is similar to role-based access control, but the controls are based on the subject's responsibilities and duties.
Topics
Community Discussion
No community discussion yet for this question.