Exam CISSP topic 1 question 3 discussion

A. Users with similar responsibilities should always be assigned a role. This simplifies the process of granting access when users join the team as well as move to new teams.

Keywords are simplify & job responsibilities

A is Correct

Question is talking about Access Permissions with Similar Job Roles. I will go with answer A.

Policy neutral access control mechanism defined around roles and privileges. So A Is the answer.

I will pick A for answer. In domain 5, it says: RBAC is where access to objects is granted based on the role of the subject. DAC gives subjects full control of objects they have created or been given access to. Content-Based Access Control is granted bases on the attributes or content of an object. Rule Based Access Control is access that’s granted based on IF/THEN statements. As the question is asking an authorization mechanism for many user with similar job responsibilities (role). Only RBAC uses role for authorization, so it is the best option.

Anyone seen RBAC implemented for a lots of users? I would know what I should answer. Reality is a little B with a lot of D, since B is easier to implement and D easier to understand.

A is correct.

The correct answer is A. Explanation: The BEST choice for the organization to implement to simplify the assignment of various system access permissions for many users with similar job responsibilities would be Role-based access control (RBAC). RBAC is a widely used authorization mechanism that assigns permissions to users based on their job functions or roles. This simplifies the administration of access control by grouping users based on their job responsibilities, and granting access permissions based on those groups or roles.

A RoleBAC

A is correct answer. RBAC

"A" sounds good to me