10 Questions
Which type of control is strictly enforced and managed by a central authority?
Nondiscretionary controls
Which method allows users to control and provide access to information/resources at their disposal?
Discretionary access controls (DACs)
Which mechanism allows unverified entities seeking access to a resource to provide a label by which they are known to the system?
Identification
What is the process of validating a supplicant's purported identity called?
Authentication
What are examples of authentication factors?
Password and passphrase
Which type of control is used to determine whether and how to admit a user into a trusted area of the organization?
Access control
What is the purpose of mandatory access controls (MACs)?
To use data classification schemes
What is the main difference between discretionary access controls (DACs) and nondiscretionary controls?
DACs allow users to control and provide access to information/resources, while nondiscretionary controls do not
What is the mechanism called where unverified entities seeking access to a resource provide a label by which they are known to the system?
Identification
Which of the following is an example of an authentication factor?
Password
Test your knowledge of Technical Controls, Access Control methods, and Mandatory and Discretionary Access Controls (MACs and DACs). Learn about the essential IT functions and data classification schemes that enforce policies and determine user access to information in an organization.
Make Your Own Quizzes and Flashcards
Convert your notes into interactive study material.
Get started for free