A government agency has implemented a security model where system administrators establish access permissions centrally based on formal approval processes. Users are unable to modify these permissions for resources, and access decisions are made by comparing security parameters assigned to both users and data. Which access control model has MOST likely been implemented?
Mandatory Access Control (MAC) is characterized by centrally administered access controls where permissions are determined by comparing security attributes assigned to both subjects and objects. Users cannot modify these permissions, and the system strictly enforces access decisions based on these predefined security parameters.
MAC differs from other models because:
DAC allows resource owners to determine and delegate access permissions
RBAC bases access decisions on user roles or job functions rather than security attributes
ABAC considers a broader range of attributes including environmental contexts for access decisions
The scenario describes the key characteristics of MAC: central administration, users unable to modify permissions, and access decisions based on comparing security parameters of users and resources.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What are the key differences between MAC and DAC?
Open an interactive chat with Bash
How does comparing security attributes work in MAC?
Open an interactive chat with Bash
Why is MAC often used in government and military contexts?
Open an interactive chat with Bash
ISC2 CISSP
Identity and Access Management (IAM)
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99
$19.99/mo
Billed monthly, Cancel any time.
3 Month Pass
$44.99
$14.99/mo
One time purchase of $44.99, Does not auto-renew.
MOST POPULAR
Annual Pass
$119.99
$9.99/mo
One time purchase of $119.99, Does not auto-renew.
BEST DEAL
Lifetime Pass
$189.99
One time purchase, Good for life.
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .