Virtual Labs

What is the main purpose of Role-Based Access Control (RBAC)?

a: To assign permissions directly to each user Explanation

Explanation

b: To group permissions into roles and assign those roles to users Explanation

Explanation

c: To allow unrestricted access to all users Explanation

Explanation

d: To disable user accounts automatically Explanation

Explanation

Which statement best describes Discretionary Access Control (DAC)?

a: Access is controlled strictly by security labels and clearance levels Explanation

Explanation

b: Users receive permissions only through predefined roles Explanation

Explanation

c: The owner of an object can grant and revoke access to others Explanation

Explanation

d: Permissions are assigned automatically by the system Explanation

Explanation

What is the core principle of Mandatory Access Control (MAC)?

a: Permissions are decided by the data owner Explanation

Explanation

b: Access decisions are based on roles defined by administrators Explanation

Explanation

c: Access is granted according to security labels and clearance levels Explanation

Explanation

d: All users are given the same permissions Explanation

Explanation

In DAC, what does the WITH GRANT OPTION allow a user to do?

a: Delete the table permanently Explanation

Explanation

b: Grant the same permissions to another user Explanation

Explanation

c: Change their security clearance level Explanation

Explanation

d: Modify their own user account Explanation

Explanation

What is the primary condition for accessing data in a standard Mandatory Access Control (MAC) system?

a: A user's security clearance must be greater than or equal to the data's classification level. Explanation

Explanation

b: The user must be assigned a role that explicitly contains the required permission. Explanation

Explanation

c: The data owner must grant the user permission via a SQL command. Explanation

Explanation

d: All users can access data randomly as long as they are authenticated. Explanation

Explanation

How does RBAC simplify privilege management in large systems?

a: By allowing users to change their own permissions Explanation

Explanation

b: By assigning permissions directly to users individually Explanation

Explanation

c: By grouping permissions into roles and reassigning users as needed Explanation

Explanation

d: By removing the need for administrators Explanation

Explanation

Access Control in Databases