Access Control Models Flashcards

1
Q

What is the Mandatory Access Control (MAC)?

A

uses security labels to determine which users are authorized to access a particular resource.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is Discretionary Access Control (DAC)?

A

resource’s owner is allowed to specify which user can access each resource.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is Role Based Access Control (RBAC)?

A

Assigns users to roles and uses these roles to grant permissions to resources

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is Rule Based Access Control (RBAC)?

A

Access is determined by rules set by the system administrator

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is an Attribute-Based Access Control (ABAC)?

A

Uses object characteristics for access control decisions

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What are User Attributes?

A

Users name, role, organization, ID, or security clearance level

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What are Environment Attributes?

A

Time of access, data location, and current organizations threat level

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What are Resource Attributes?

A

File creation date, resource owner, file name, and data sensitivity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is Time-of-day Restrictions?

A

Controls restrict resource access based on requests times

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

What is the Principle Of Least Privilege?

A

Granting users the minimum access required for their tasks, without extra privileges

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

What is Permission or Authorization Creep?

A

Occurs where a user gains excessive rights during their career progression in the company

How well did you know this?
1
Not at all
2
3
4
5
Perfectly