In discretionary access control security, who has delegation authority to grant access to data?
A.
User
B.
Security office
C.
Security policy
D.
Owner
Explanation:
This question may seem a little confusing if you were stuck betweenuser and owner. Only the data owner can decide who can access the resources sheowns. She may be a user and she may not. A user is not necessarily the owner of theresource. Only the actual owner of the resource can dictate what subjects canactually access the resource.