Access Control Models — CompTIA Security+ (SY0-701) Practice Questions

Access control models define the rules and mechanisms by which a system determines who can access what resources and under which conditions. The SY0-701 exam covers several models including discretionary access control (where resource owners set permissions), mandatory access control (where a central authority enforces policy based on labels), role-based access control (where permissions are tied to job roles), and attribute-based access control (where access is determined by evaluated attributes of users, resources, and environment). Candidates should be able to identify which model is in use given a described scenario and explain the trade-offs between them in terms of flexibility, administrative overhead, and security enforcement.

Free questions on access control models