What type of RBAC is being employed in this example?

Joe is a member of both the Cashier and Cashier Supervisor roles. If he logs inas a Cashier, the Supervisor role is unavailable to him during that session. If helogs in as Cashier Supervisor, the Cashier role is unavailable to him during thatsession. What type of RBAC is being employed in this example?

Joe is a member of both the Cashier and Cashier Supervisor roles. If he logs inas a Cashier, the Supervisor role is unavailable to him during that session. If helogs in as Cashier Supervisor, the Cashier role is unavailable to him during thatsession. What type of RBAC is being employed in this example?

A.
Dynamic separation of duty

B.
Static separation of duty

C.
Limited

D.
Hybrid

Explanation:
– Static Separation of Duty (SSD) Relations through RBAC This would be used to deterfraud by constraining the combination of privileges (such as, the user cannot be amember of both the Cashier and Accounts Receivable groups).
– Dynamic Separation of Duties (DSD) Relations through RBAC This would be used to deter fraud by constraining the combination of privileges that can be activated inany session (for instance, the user cannot be in both the Cashier and Cashier Supervisor roles at the same time, but the user can be a member of both). This oneis a little more confusing. It means Joe is a member of both the Cashier and Cashier Supervisor. If he logs in as a Cashier, the Supervisor role is unavailable to him during that session. If he logs in as Cashier Supervisor, the Cashier role is unavailable to him during that session
– Limited RBAC Users are mapped to multiple roles and mapped directly to other typesof applications that do not have role-based access functionality.
– Hybrid RBAC Users are mapped to multi-application roles with only selected rightsassigned to those roles.



Leave a Reply 0

Your email address will not be published. Required fields are marked *