CISSP Question #1450: Real Exam Question with Answer & Explanation

The correct answer is D: Role Based Access Control (RBAC) and Access Control List (ACL). RBAC Integration: Attribute-Based Access Control (ABAC) can be integrated with RBAC. User roles (from RBAC) can become one of the many attributes considered by an ABAC system when making access decisions. ACL Refinement: ABAC can leverage and refine the use of ACLs. With ABAC, pe

Submitted by lars.no· Mar 5, 2026Identity and Access Management

Question

Which of the following factors should be considered characteristics of Attribute Based Access Control (ABAC) in terms of the attributes used?

Options

AMandatory Access Control (MAC) and Discretionary Access Control (DAC)
BDiscretionary Access Control (DAC) and Access Control List (ACL)
CRole Based Access Control (RBAC) and Mandatory Access Control (MAC)
DRole Based Access Control (RBAC) and Access Control List (ACL)

Explanation

RBAC Integration: Attribute-Based Access Control (ABAC) can be integrated with RBAC. User roles (from RBAC) can become one of the many attributes considered by an ABAC system when making access decisions. ACL Refinement: ABAC can leverage and refine the use of ACLs. With ABAC, permissions on an ACL can be granted or denied based on various attributes rather than solely on user identities or

Topics

#Attribute Based Access Control (ABAC)#Role Based Access Control (RBAC)#Access Control List (ACL)#Access control models

Community Discussion

No community discussion yet for this question.

Full CISSP Practice Browse All CISSP Questions