An organization assigns security labels to both users and resources. Access decisions are based on matching these labels to ensure that users with the required security clearance can access certain resources. Which authorization model is being used?
This scenario describes the Mandatory Access Control (MAC) model. In MAC, access permissions are enforced by a central authority based on security labels and classifications. Users cannot alter access controls; they are determined by system policies that match user clearances with resource classifications. Discretionary Access Control (DAC) allows resource owners to set access permissions, Role-Based Access Control (RBAC) assigns permissions based on organizational roles, and Attribute-Based Access Control (ABAC) considers various user and environmental attributes for access decisions.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are security labels in Mandatory Access Control?
Open an interactive chat with Bash
How does mandatory access control differ from discretionary access control?
Open an interactive chat with Bash
What are the advantages of using Mandatory Access Control?