N10-005 · Question #539
N10-005 Question #539: Real Exam Question with Answer & Explanation
The correct answer is A: Mandatory access control. Mandatory Access Control (MAC) enforces access permissions based on classification labels assigned to data (e.g., Top Secret, Secret, Confidential, Unclassified) and clearance levels assigned to users. The operating system or security kernel - not the data owner - makes all acces
Question
Options
- AMandatory access control
- BSeparation of duties access control
- CDiscretionary access control
- DRole based access control
Explanation
Mandatory Access Control (MAC) enforces access permissions based on classification labels assigned to data (e.g., Top Secret, Secret, Confidential, Unclassified) and clearance levels assigned to users. The operating system or security kernel - not the data owner - makes all access decisions. This is the model used in government and military systems. Discretionary Access Control (DAC) lets data owners set permissions. Role-Based Access Control (RBAC) assigns permissions based on job roles. Separation of duties divides tasks to prevent fraud, not based on data labels.
Community Discussion
No community discussion yet for this question.