Which of the following is an example of discretionary access control?
A.
Identity-based access control
B.
Task-based access control
C.
Role-based access control
D.
Rule-based access control
Explanation:
Identity-based access control is a type of DAC system that allows or prevents access based on the identity of
the subject.
Incorrect Answers:
B: Task-based access control is a non-discretionary access control model, which is based on the tasks each
subject must perform.
C: Role-based access control (RBAC) provides access to resources according to the role the user holds within
the company or the tasks that the user has been assigned.
D: Rule-based access control makes use of explicit rules that specify what can and cannot happen between a
subject and an object, not on their security labels.References:
Harris, Shon, All In One CISSP Exam Guide, 6th Edition, McGraw-Hill, 2013, pp. 220-228