GIAC Exam GCIH Topic 6 Question 28 Discussion

Actual exam question for GIAC's GCIH exam

Question #: 28
Topic #: 6

[All GCIH Questions]

Which of the following controls is described in the statement given below?

"It ensures that the enforcement of organizational security policy does not rely on voluntary web application user compliance. It secures information by assigning sensitivity labels on information and comparing this to the level of security a user is operating at."

ARole-based Access Control

BAttribute-based Access Control

CDiscretionary Access Control

DMandatory Access Control

Show Suggested Answer

Suggested Answer: B

by Kanisha at Sep 14, 2024, 02:10 AM

Limited Time Offer

25%

Off

Get Premium GCIH Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

Submit Cancel

Anglea

2 days ago

Mandatory access control, eh? I guess the developers of this exam are feeling a bit 'mandatory' today. Gotta love these security-themed brain teasers!

upvoted 0 times

...

Danilo

6 days ago

Really? Mandatory access control? I was thinking it might be role-based, but the part about not relying on user compliance makes me think D is the right answer. Tricky question!

upvoted 0 times

...

Omega

6 days ago

I'm going to have to go with option D on this one. Mandatory access control is the only choice that matches the criteria given in the question.

upvoted 0 times

...

Frederica

9 days ago

I'm not sure, but I think it could also be B) Attribute-based Access Control. It assigns sensitivity labels like the description mentions.

upvoted 0 times

...

Chandra

9 days ago

Hmm, this sounds like mandatory access control to me. The description about assigning sensitivity labels and comparing to user security levels is a dead giveaway.

upvoted 0 times

...

Loise

12 days ago

I agree with Bettyann. Mandatory Access Control makes sense based on the description.

upvoted 0 times

...

Bettyann

17 days ago

I think the answer is D) Mandatory Access Control.

upvoted 0 times

...