PrepAway - Latest Free Exam Questions & Answers

A central authority determines what subjects can have a…

A central authority determines what subjects can have access to certain objects based on the organizational
security policy is called:

PrepAway - Latest Free Exam Questions & Answers

A.
Mandatory Access Control

B.
Discretionary Access Control

C.
Non-Discretionary Access Control

D.
Rule-based Access control

Explanation:
Non-discretionary access control is when the system administrator or a single management body within an
organization centrally controls access to all resources for everybody on a network.
Incorrect Answers:
A: Mandatory access control (MAC) is an access policy that restricts access to objects based on the security
clearance of a subject and the classification of an object.
B: Discretionary access control (DAC) is an access control model and policy that restricts access to objects
according to the identity of the subjects and the groups to which those subjects belong.
D: Rule-based access control makes use of explicit rules that specify what can and cannot happen between a
subject and an object.

Harris, Shon, All In One CISSP Exam Guide, 6th Edition, McGraw-Hill, 2013, pp. 220-228


Leave a Reply