CISSP · Question #36
A practice that permits the owner of a data object to grant other users access to that object would usually provide
The correct answer is D. Discretionary Access Control (DAC).. A practice that permits the owner of a data object to grant other users access to that object would usually provide Discretionary Access Control (DAC). DAC is a type of access control that allows the data owner or creator to decide who can access or modify the data object, based
Question
A practice that permits the owner of a data object to grant other users access to that object would usually provide
Options
- AMandatory Access Control (MAC).
- Bowner-administered control.
- Cowner-dependent access control.
- DDiscretionary Access Control (DAC).
How the community answered
(43 responses)- A2% (1)
- C5% (2)
- D93% (40)
Explanation
A practice that permits the owner of a data object to grant other users access to that object would usually provide Discretionary Access Control (DAC). DAC is a type of access control that allows the data owner or creator to decide who can access or modify the data object, based on their identity or membership in a group. DAC is implemented using access control lists (ACLs), which specify the permissions or rights of each user or group for each data object. DAC is flexible and easy to implement, but it can also pose a security risk if the data owner grants excessive or inappropriate access to unauthorized or malicious users. Mandatory Access Control (MAC), owner-administered control, and owner-dependent access control are not types of access control that permit the owner of a data object to grant other users access to that object, as they are either based on predefined rules or policies, or not related to access control at all.
Topics
Community Discussion
No community discussion yet for this question.