nerdexam
ExamsCISSPQuestions#1524
(ISC)2(ISC)2

CISSP · Question #1524

CISSP Question #1524: Real Exam Question with Answer & Explanation

Each access control model has a distinct restriction mechanism: Mandatory Access Control (MAC) restricts access based on security labels and classifications assigned by a central authority (e.g., Top Secret, Secret). Discretionary Access Control (DAC) allows the resource owner to

Submitted by packet_pusher· Mar 5, 2026CompTIA Security+ / CISSP - Identity and Access Management (IAM): Understanding and differentiating between access control models and their associated restriction mechanisms.

Question

Drag and Drop Question Match the name of access control model with its associated restriction. Drag each access control model to its appropriate restriction access on the right. Answer:

Explanation

Each access control model has a distinct restriction mechanism: Mandatory Access Control (MAC) restricts access based on security labels and classifications assigned by a central authority (e.g., Top Secret, Secret). Discretionary Access Control (DAC) allows the resource owner to determine who can access their resources at their discretion. Role Based Access Control (RBAC) grants access based on a user's assigned role within an organization (e.g., Admin, Manager). Rule Based Access Control uses predefined rules or conditions (e.g., time-of-day, IP address rules) to govern access, often used in firewalls and network devices.

Topics

#Access Control Models#Identity and Access Management#Security Policies#Authorization

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CISSP PracticeBrowse All CISSP Questions