Which access control model would a lattice-based access control model be an example of?

A.
Mandatory access control.

B.
Discretionary access control.

C.
Non-discretionary access control.

D.
Rule-based access control.

Explanation:
A lattice-based access control model, which is a type of label-based mandatory access control model, is used
to define the levels of security that an object may have and that a subject may have access to.
Incorrect Answers:
B: Access in a DAC model is restricted based on the authorization granted to the users, not on their security
labels.
C: Non-discretionary access control is when the system administrator or a single management body within an
organization centrally controls access to all resources for everybody on a network, not on their security labels.
D: Rule-based access control makes use of explicit rules that specify what can and cannot happen between a
subject and an object, not on their security labels.

Harris, Shon, All In One CISSP Exam Guide, 6th Edition, McGraw-Hill, 2013, pp. 220-228
https://en.wikipedia.org/wiki/Lattice-based_access_control