The appropriate default level for an access control mechanism is?
A.
Everyone full control
B.
Everyone Read access
C.
No Access
D.
Full Access
Explanation:
Access control mechanisms should default to no access so as to provide the necessarylevel of security and ensure no security holes go unnoticed. If access is notexplicitly allowed, it should be implicitly denied. Security is all about beingsafe, and this is the safest approach to practice when dealing with access controlmethods and mechanisms. other words, all access controls should be based on theconcept of starting with zero access, and building on top of that. tead of givingaccess to everything, and then taking away privileges based on need to know, thebetter approach is to start with nothing and add privileges based on need to know.
I agree with the answer. C