Question

A central authority determines which files a user can access based on the organization's hierarchy. Which of the following best describes this?

A. Discretionary access control model
B. An access control list (ACL)
C. Rule-based access control model
D. Role-based access control model

Answer 1

The correct answer is D. Role-based access control model. In this model, a central authority determines a user's access based on their role in the organizational hierarchy.

Step-by-step explanation:

The correct answer is D. Role-based access control model.

Role-based access control (RBAC) is an access control model where access permissions are granted to users based on their roles within an organization. In this model, a central authority determines a user's access based on their role in the organizational hierarchy.

For example, in a company, employees may have different levels of access to files and resources based on their job positions. The central authority, such as the IT department, assigns specific roles to users and grants access permissions accordingly. This ensures that employees can only access the files and resources that are necessary for their roles and responsibilities.