In Mandatory Access Control, sensitivity labels attached to object contain what information?
Click on the arrows to vote for the correct answer
A. B. C. D.B.
A Sensitivity label must contain at least one classification and one category set.
Category set and Compartment set are synonyms, they mean the same thing.
The sensitivity label must contain at least one Classification and at least one Category.It is common in some environments for a single item to belong to multiple categories.
The list of all the categories to which an item belongs is called a compartment set or category set.
The following answers are incorrect: the item's classification.
Is incorrect because you need a category set as well.
the item's category.Is incorrect because category set and classification would be both be required.
The item's need to know.
Is incorrect because there is no such thing.The need to know is indicated by the catergories the object belongs to.This is NOT the best answer.
Reference(s) used for this question: OIG CBK, Access Control (pages 186 - 188) AIO, 3rd Edition,Access Control (pages 162 - 163) AIO, 4th Edittion, Access Control, pp 212-214
Wikipedia - http://en.wikipedia.org/wiki/Mandatory_Access_Control.
In Mandatory Access Control (MAC), sensitivity labels are used to define the access control policies for objects such as files, directories, and other system resources. These sensitivity labels provide a way to specify the sensitivity of an object, and the level of clearance required to access it.
The sensitivity labels attached to an object contain information about the object's security classification, which represents the level of sensitivity or confidentiality of the information stored in the object. Security classifications are typically defined by government or organizational security policies and can be assigned to information based on its value to the organization, its potential impact if compromised, or other factors.
In addition to the security classification, sensitivity labels may also include information about the object's category set. Category sets are used to represent additional security attributes, such as the type of data contained in the object or the purpose of the object.
For example, an object may have a security classification of "Top Secret" and a category set of "Financial Data." This sensitivity label would indicate that the object contains highly sensitive financial information that can only be accessed by users with the appropriate clearance and need-to-know.
Therefore, option B, "The item's classification and category set," is the correct answer. The sensitivity labels attached to an object in MAC contain both the object's security classification and its category set, providing a comprehensive set of security attributes that can be used to control access to the object.