Which statement best describes how Mandatory Access Control (MAC) manages access permissions?
Think about who controls the access rules in MAC.
In Mandatory Access Control, the system enforces access based on security labels assigned to both users and resources. Users cannot change these permissions themselves.
Which of the following is a key characteristic of Discretionary Access Control (DAC)?
Consider who controls permissions in DAC.
In DAC, the owner of a resource can decide who else can access it, allowing users to grant or revoke permissions.
Which feature uniquely distinguishes Attribute-Based Access Control (ABAC) from both DAC and MAC?
Think about how ABAC uses information beyond just ownership or labels.
ABAC evaluates various attributes such as user role, resource type, time of access, and location to make flexible access decisions.
A company enforces access where only users with a security clearance level equal to or higher than the document's classification can view it. Users cannot change these permissions. Which access control model is this?
Consider who controls the permissions and how they are enforced.
This scenario describes MAC, where access is controlled by system-enforced labels like security clearance and classification levels.
In a cloud environment where access must adapt to changing user roles, device security status, and time of day, which access control model is most suitable?
Think about which model supports flexible, attribute-driven decisions.
ABAC supports dynamic access decisions based on multiple attributes like user role, device status, and time, making it ideal for cloud environments.