CISSP Question #942: Real Exam Question with Answer & Explanation

The correct answer is B: Manage resource privileges. XACML is an XML-based language for specifying access control policies. It defines a declarative, fine-grained, attribute-based access control policy language, an architecture, and a processing model describing how to evaluate access requests according to the rules defined in poli

Submitted by ngozi_ng· Mar 5, 2026Identity and Access Management (IAM)

Question

Which of the following is BEST achieved through the use of eXtensible Access Markup Language (XACML)?

Options

AMinimize malicious attacks from third parties
BManage resource privileges
CShare digital identities in hybrid cloud
DDefined a standard protocol

Explanation

XACML is an XML-based language for specifying access control policies. It defines a declarative, fine-grained, attribute-based access control policy language, an architecture, and a processing model describing how to evaluate access requests according to the rules defined in policies. XACML is best suited for managing resource privileges, as it allows for flexible and dynamic authorization decisions based on various attributes of the subject, resource, action, and environment. XACML is not designed to minimize malicious attacks, share digital identities, or define a standard protocol, although it can interoperate with other standards such as SAML and

Topics

#XACML#access control#authorization

Community Discussion

No community discussion yet for this question.

Full CISSP Practice Browse All CISSP Questions