SSCP Question #88: Real Exam Question with Answer & Explanation

The correct answer is B: Access control lists are related/attached to an object whereas capability tables are. Access Control Lists (ACLs) are attached to objects (resources such as files or directories) and enumerate which subjects (users/groups) have what permissions on that object. Capability tables (or tickets) are attached to subjects (users) and list which objects they are authorize

Submitted by rachelw· Apr 18, 2026Access Controls

Question

What is the difference between Access Control Lists (ACLs) and Capability Tables?

Options

AAccess control lists are related/attached to a subject whereas capability tables are
BAccess control lists are related/attached to an object whereas capability tables are
CCapability tables are used for objects whereas access control lists are used for users.
DThey are basically the same.

Explanation

Access Control Lists (ACLs) are attached to objects (resources such as files or directories) and enumerate which subjects (users/groups) have what permissions on that object. Capability tables (or tickets) are attached to subjects (users) and list which objects they are authorized to access and with what rights. In essence, ACLs answer 'who can access this resource?' while capability tables answer 'what can this user access?' - they are complementary perspectives on the same access control relationship.

Topics

#Access Control Lists#Capability Tables#Access Control Models#Authorization

Community Discussion

No community discussion yet for this question.

Full SSCP Practice Browse All SSCP Questions