Which of the following statements are true about declarative security?

Which of the following statements are true about declarative security? Each correct answer
represents a complete solution. Choose all that apply.

A.
It is employed in a layer that relies outside of the software code or uses attributes of the code.

B.
It applies the security policies on the software applications at their runtime.

C.
In this security, authentication decisions are made based on the business logic.

D.
In this security, the security decisions are based on explicit statements.

Explanation:
Declarative security applies the security policies on the software applications at their
runtime. In this type of security, the security decisions are based on explicit statements that
confine security behavior. Declarative security applies security permissions that are required for
the software application to access the local resources and provides role-based access control to
an individual software component and software application. It is employed in a layer that relies

security, authentication decisions are coarse-grained in nature from an operational or external
security perspective.