SSCP Question #108: Real Exam Question with Answer & Explanation

The correct answer is D: Mandatory access control. With mandatory access control (MAC), the authorization of a subject's access to an object is dependant upon labels, which indicate the subject's clearance, and classification of objects. The Following answers were incorrect: Identity-based Access Control is a type of Discretionar

Submitted by javi_es· Apr 18, 2026Access Controls

Question

Which of the following access control models requires defining classification for objects?

Options

ARole-based access control
BDiscretionary access control
CIdentity-based access control
DMandatory access control

Explanation

With mandatory access control (MAC), the authorization of a subject's access to an object is dependant upon labels, which indicate the subject's clearance, and classification of objects. The Following answers were incorrect: Identity-based Access Control is a type of Discretionary Access Control (DAC), they are Role Based Access Control (RBAC) and Rule Based Access Control (RuBAC or RBAC) are types of Non Discretionary Access Control (NDAC). When you have two answers that are synonymous they are not the right choice for sure. There is only one access control model that makes use of Label, Clearances, and Categories, it is Mandatory Access Control, none of the other one makes use of those items.

Topics

#Access Control Models#Mandatory Access Control#Object Classification#Security Labels

Community Discussion

No community discussion yet for this question.

Full SSCP Practice Browse All SSCP Questions