The network administrator at a small organization prefers to allow resource owners to personally assign and revoke access permissions to files on a network share. Which access control model should they implement to accommodate individual control by resource owners?
The network administrator's preference is indicative of the Discretionary Access Control model, where resource owners have the freedom to provide or restrict access to other users at their discretion. While Role-Based Access Control autonomously assigns permissions based on the user's role and does not cater to individual resource owner preferences, it is not the best fit for the scenario described. Similarly, Rule-Based Access Control typically works alongside role-based mechanisms but with additional rules that might not relate to individual discretion. The Mandatory Access Control model enforces access decisions made by a central authority, not by individual resource owners, and is thus also not suitable for this situation.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is Discretionary Access Control (DAC)?
Open an interactive chat with Bash
How does Role-Based Access Control (RBAC) differ from DAC?
Open an interactive chat with Bash
What are the advantages and disadvantages of using Mandatory Access Control (MAC)?