Abac — CISSP Practice Questions
Attribute-Based Access Control (ABAC) is an access control model that grants or denies permissions based on evaluated attributes of users, resources, actions, and environment rather than static role assignments. On the CISSP exam, ABAC is distinguished from Role-Based Access Control and Discretionary Access Control by its dynamic, policy-driven nature, making it well suited for complex, fine-grained authorization scenarios. Candidates should understand that ABAC policies can incorporate attributes such as time of day, device type, clearance level, and data sensitivity. This model is increasingly relevant to cloud and zero-trust architectures, both of which appear in current CISSP questions.
Free questions on abac
Which type of access control makes authorization decisions based on attributes of the subject, resource, and environment?
Free question · medium · full answer + explanation
More abac questions in the full bank
- Which access control model uses attributes and policies to make granular access decisions? Unlock answer & explanation →
- What is attribute-based access control (ABAC)? Unlock answer & explanation →
- Which access control model is MOST appropriate for organizations requiring dynamic access decisions based on real-time attributes? Unlock answer & explanation →