nerdexam
(ISC)2

CISSP · Question #30

Logical access control programs are MOST effective when they are

The correct answer is D. made part of the operating system.. Logical access control programs are most effective when they are made part of the operating system. Logical access control is the process of granting or denying access to information or resources based on the identity, role, or credentials of the user or device. Logical access co

Submitted by viktor_hu· Mar 5, 2026Identity and Access Management

Question

Logical access control programs are MOST effective when they are

Options

  • Aapproved by external auditors.
  • Bcombined with security token technology.
  • Cmaintained by computer security officers.
  • Dmade part of the operating system.

How the community answered

(44 responses)
  • A
    16% (7)
  • B
    9% (4)
  • C
    5% (2)
  • D
    70% (31)

Explanation

Logical access control programs are most effective when they are made part of the operating system. Logical access control is the process of granting or denying access to information or resources based on the identity, role, or credentials of the user or device. Logical access control programs, such as authentication, authorization, and auditing mechanisms, can be implemented at different levels of the system, such as the application, the database, or the network. However, the most effective level is the operating system, as it provides the lowest and most comprehensive layer of access control, and can enforce the principle of least privilege and the separation of duties for all users and processes. Approval by external auditors, combination with security token technology, and maintenance by computer security officers are not factors that affect the effectiveness of logical access control programs, as they are more related to the compliance, assurance, and administration of the access control policies.

Topics

#logical access control#operating system security#access control mechanisms

Community Discussion

No community discussion yet for this question.

Full CISSP Practice