Which two mechanisms address threats of elevating user privileges in the application access
domain?

A.
Authentication and authorization

B.
Access control to storage objects and Access Control Lists (ACLs)

C.
Access control to storage objects and auditing

D.
User authentication and Information Rights Management (IRM)

Explanation:
Securing the Application Access Domain

Access control services regulate user and host access to data. These services mitigate the threats
of spoofing user identity and elevating their privileges. Both these threats affect data integrity and
confidentiality. Access control mechanisms used in application access domain are user and host
authentication (technical control) and authorization (administrative control). These mechanisms
may lie outside the boundaries of the storage network and require various systems to interconnect
with other enterprise identity management and authentication systems. NAS devices support the
creation of access control lists that regulates user access to specific files. The Enterprise Content
Management application enforces access to data by using Information Rights Management (IRM)
that specifies which users have what rights to a document.
EMC E10-001 Student Resource Guide. Module 14: Securing the Storage Infrastructure