A project lead decides which team members can access specific project files, granting read or update permissions on a case-by-case basis. Which authorization model does this scenario illustrate?
An approach that grants privileges based on a person's organizational group membership.
A framework that provides third-party applications with delegated access to resources.
A model where the owner of a resource has the discretion to assign access permissions to other users.
A model that aligns resource permissions with defined job functions.
Discretionary Access Control (DAC) is an authorization model where the owner of a resource has the discretion to assign access permissions to other individuals. The project lead in this scenario is acting as the resource owner. This model is distinct from role-based access, which assigns permissions based on job functions, and group-based access, which is determined by a user's membership in a particular group. It also differs from delegated authorization frameworks like OAuth 2.0, which are designed to grant third-party applications limited access to resources.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is the difference between an owner-centric model and a role-based model?
Open an interactive chat with Bash
How is the owner-centric model applied in real-world scenarios?
Open an interactive chat with Bash
What are the benefits and challenges of using an owner-centric model?