which of the following entities is authorized to grant information access to other people?

seenagapeSeptember 13, 2013

In a discretionary mode, which of the following entities is authorized to grant information access to
other people?

A.
Manager

B.
Group leader

C.
Security manager

D.
User

Explanation:
Discretionary control is the most common type of access control mechanism
implemented in computer systems today. The basis of this kind of security is that an individual
user, or program operating on the user’s behalf, is allowed to specify explicitly the types of access
other users (or programs executing on their behalf) may have to information under the user’s
control. Discretionary security differs from mandatory security in that it implements the access
control decisions of the user. Mandatory controls are driven by the results of a comparison
between the user’s trust level or clearance and the sensitivity designation of the information.

One Comment on “which of the following entities is authorized to grant information access to other people?”

Ahmed says:

December 31, 2014 at 6:08 am

Nonsense. How can a User(subject) grant access to him/herself or to other people. Don’t know where you’ve gotten these bogus questions. These need to be taken out of here. The data ‘owner’ is the one who decides in DAC as to who will have access to the data.

0

0

Log in to Reply

Get 50% Discount on All Your Purchases
at PrepAway.com - Latest Exam Questions

This is ONE TIME OFFER

Enter your email address to receive your 50% off dicount code:

SPECIAL OFFER: GET 50% OFF

Use Discount Code:

ISC Exam Questions

Free ISC2 Study Guide

which of the following entities is authorized to grant information access to other people?

One Comment on “which of the following entities is authorized to grant information access to other people?”

Leave a Reply Cancel reply