What access control methodology facilitates frequent changes to data permissions?
A.
Rule-based
B.
List-based
C.
Role-based
D.
Ticket-based
Explanation:
RBAC – This type of model provides access to resources based on the role the
users holds within the company or the tasks that user has been assigned. – Shon Harris All-in-one
CISSP Certification Guide pg 937
Rule-based access control is a type of mandatory access control because rules determine this
access (such as the correspondence of clearances labels to classification labels), rather than the
identity of the subjects and objects alone. . -Ronald Krutz The CISSP PREP Guide (gold edition)
pg 45-46