CompTIA Cloud+ CV0-003 Practice Question
Which security control should be implemented by a cloud services administrator to ensure that the handling of classified data is managed strictly by organizational policy, with access permissions determined by a central authority without any discretion left to the individual or entity owning the data?
Use attribute-based access control (ABAC) employing classification attributes as policy criteria
Adopt an extensive discretionary access control (DAC) system with classifications
Implement mandatory access control (MAC) with security labels
Utilize role-based access control (RBAC) with predefined roles incorporating data classification levels