Welcome to ExamTopics
ExamTopics Logo
- Expert Verified, Online, Free.
Mail Us[email protected]
Menu
Isc Discussions
exam questions

Exam CISSP All Questions

View all questions & answers for the CISSP exam
Go to Exam

Exam CISSP topic 1 question 172 discussion

Actual exam question from ISC's CISSP
Question #: 172
Topic #: 1
[All CISSP Questions]

Which of the following factors should be considered characteristics of Attribute Based Access Control (ABAC) in terms of the attributes used?

  • A. Mandatory Access Control (MAC) and Discretionary Access Control (DAC)
  • B. Discretionary Access Control (DAC) and Access Control List (ACL)
  • C. Role Based Access Control (RBAC) and Mandatory Access Control (MAC)
  • D. Role Based Access Control (RBAC) and Access Control List (ACL)
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️
by RVoigt at Feb. 14, 2023, 1:16 p.m.

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Submit Cancel
RVoigt
Highly Voted 1 year, 9 months ago
Selected Answer: D
CISSP Official Study Guide pg 686 - "ABAC models use policies that include multiple attributes for rules. Attributes can be almost any characteristic of users, the network, and devices on the network. For example, user attributes can include group membership, the department where they work, and devices they use such as desktop PCs or mobile devices. The network can be the local internal network, a wireless network, an intranet, or a wide area network (WAN). Devices can include firewalls, proxy servers, web servers, database servers, and more."
upvoted 6 times
...
klarak
Most Recent 7 months, 1 week ago
How can RBAC be an answer? I thought combining RBAC with ABAC makes it a hybrid environment? How is RBAC part of ABAC, that makes no sense?
upvoted 1 times
...
74gjd_37
1 year, 2 months ago
Selected Answer: D
The correct answer is D. Role Based Access Control (RBAC) and Access Control List (ACL) are the attributes used in Attribute Based Access Control (ABAC). RBAC defines access based on a user's job function within an organization and ACL defines access based on a user's identity.
upvoted 1 times
...
georgegeorge125487
1 year, 3 months ago
Selected Answer: D
ABAC is an improvments over RuBAC which is based on merging roles with ACL. 1 role = several sevral actions i.e. rules.
upvoted 1 times
...
Tygrond87
1 year, 6 months ago
Selected Answer: C
Abac can be based on your group RBAC or your label MAC
upvoted 1 times
jackdryan
1 year, 6 months ago
D is correct
upvoted 2 times
...
...
iwannapass
1 year, 9 months ago
Selected Answer: D
I think this might be a typo. I'm going with Rule-Based Access Control and ACL. My reasoning is backed by the sybex book 9th edition, page 686. Topic on ADAC. ADAC is an advanced form of Rule-Based Access Control . Correct me if i am wrong.
upvoted 3 times
...

Get IT Certification

Unlock free, top-quality video courses on ExamTopics with a simple registration. Elevate your learning journey with our expertly curated content. Register now to access a diverse range of educational resources designed for your success. Start learning today with ExamTopics!

Start Learning for free
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel