CISSP · Question #997
CISSP Question #997: Real Exam Question with Answer & Explanation
The correct answer is C: Attribute-based access control (ABAC). Attribute-based access control (ABAC) is an access control mechanism that characterizes subjects (users, processes) and objects (resources) using a set of encoded security-relevant attributes or properties. ABAC allows for fine-grained access control decisions based on various at
Question
Which of the following access control mechanisms characterized subjects and objects using a set of encoded security-relevant properties?
Options
- AMandatory access control (MAC)
- BRole-based access control (RBAC)
- CAttribute-based access control (ABAC)
- DDiscretionary access control (DAC)
Explanation
Attribute-based access control (ABAC) is an access control mechanism that characterizes subjects (users, processes) and objects (resources) using a set of encoded security-relevant attributes or properties. ABAC allows for fine-grained access control decisions based on various attributes such as user roles, resource classifications, time of access, and other contextual information. This flexibility in defining access policies makes ABAC suitable for complex and dynamic access control scenarios.
Topics
Community Discussion
No community discussion yet for this question.