A company is designing a new application that must restrict employees’ views based on the tasks assigned to them. Which approach meets these objectives best?
Maintain one universal permission set for all employees
Assign permissions based on department or job roles
Provide users with self-administered control over dataset visibility
Assign permissions for each user based on individual needs
Aligning permissions with department or job roles effectively associates tasks with relevant data access. Approaches that rely on each individual's separate needs or a universal set for all employees often fail to match evolving responsibilities and can lead to either insufficient or excessive access. Likewise, providing users with direct control increases the risk of inconsistent settings and overlooked security measures.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is role-based access control (RBAC)?
Open an interactive chat with Bash
Why is individual permission assignment less effective than role-based permissions?
Open an interactive chat with Bash
What are the risks of allowing users to self-manage dataset visibility?