Last Updated on August 1, 2021 by Admin 2
In which access control model does the owner of the resource decide who has access to the resource?
Discretionary access control is used when the data owner configures the appropriate permission for each user.
In the mandatory access control model (MAC), a central assigns a sensitivity label to each document, such as secret, top secret, and so on. Users can access sensitivity levels to which they have been given access. The least privilege principle is most commonly associated with mandatory access control. Under MAC, only an administrator can change the category or classification of a subject or object.
In the non-discretionary access control (NDAC) model, a central body decides which users have access to which documents.
In role-based access control (RBAC), access is based on the job roles to which a user belongs.
Objective: Security Concepts
Sub-Objective: Compare and contrast these access control models: Discretionary access control, mandatory access control, Nondiscretionary access control