Which of the following are the primary components of a discretionary access control (DAC) model? Each correct answer represents a complete solution.
Choose two.
Click on the arrows to vote for the correct answer
A. B. C. D.BD.
Discretionary access control (DAC) is a type of access control model in which the owner of the resource decides who is granted access and what actions they can perform on that resource. In a DAC model, the primary components include:
User's group: Users are often organized into groups that have common access requirements. These groups may be based on job function, department, or other criteria. Access rights can be granted to a group, and any user who belongs to that group will inherit those access rights.
File and data ownership: The owner of a file or data is typically the user who created it. The owner has the right to control access to the resource and can grant or revoke access rights to other users.
Smart card: A smart card is a small electronic device that contains a microprocessor and memory. It can be used for authentication and access control purposes. In a DAC model, a smart card may be used as a means of identifying the user and granting access to resources.
Access rights and permissions: Access rights determine what actions a user can perform on a resource. These actions may include read, write, execute, delete, or modify. Access rights can be granted or revoked by the owner of the resource.
Therefore, the correct answers for the primary components of a discretionary access control (DAC) model are:
A. User's group B. File and data ownership
C and D are not primary components of a DAC model. A smart card may be used as a means of authentication in a DAC model, but it is not a primary component. Access rights and permissions are a feature of access control models in general, not just DAC.