Acme has the choice of rolling out products that are based on DAC, MAC, orRBAC models. Their security policy indicates that authentication will be identitybased, so which of the following would be the best model to use?
A.
MAC
B.
DAC
C.
Rule-based
D.
BAC
Explanation:
DAC systems grant or deny access based on the identity of the subject. The identitycan be a user identity or group membership. MAC models make access decisions basedon classification, clearance, and need to know. Rule-based is a set of rules thatare applied to all subjects, no matter what their identity is. DAC is always anidentity-based model. BAC is a distracter.