ch 10 Access Control Methods and Models

Question 1

access control modcels

Answer 1

admission to more important, computer systems,

Question 2

Discretionary access control (DAC

Answer 2

craeted by the owner they have the say as to what users can do. objects ( files prnters)
ex full control ntfs permission

Question 3

Mac

Answer 3

set by COMPUTER . Permissions are predefined
in the MAC model

subjects (users) ojects (files, folders, hardware
devices, network connections

Question 4

data labeling

Answer 4

subject’s label dictates its security level,
or level of trust. An object’s label dictates what level of clearance is needed to access
it, also known as a trust level

Question 5

Rule-based access control (label )

Answer 5

comparing the
object label and the subject label.
indivvidual permissions

Question 6

roleRole-based access control

Answer 6

controlled by the system,

works with sets of permissions,

Question 7

summary acees controls models

Answer 7

DAC Every object in the system has an owner.
Permissions are determined by the owner.
MAC Permissions are determined by the system.
Can be rule-based or lattice-based.
Labels are used to identify security levels of subjects and objects.
RBAC Based on roles, or sets of permissions involved in an operation.
Controlled by the system.

Question 8

anonymous access

control

Answer 8

acecss to ftp server no autheenticaion is required

Question 9

implict deny

Answer 9

will deny users access to a resource unless they are specifically
allowed access

Question 10

NTFS PERMSIIONS

Answer 10

Full Control
■ Modify
■ Read & Execute
■ List Folder Contents
■ Read
■ Write