Which requirement is supported by attribute-based access control (ABAC)?
Which requirement is supported by attribute-based access control (ABAC)?
Attribute-based access control (ABAC) allows access decisions to be based on attributes of the user, the resource, and the environment, rather than predefined roles. The requirement that 'Bakers with a rating of 4 or better can add recipes to the database' directly involves using an attribute (the rating) to determine access permissions, which aligns with the principles of ABAC.
PII is considered in CBAC. Since this is about ABAC, we should consider attributes. Answer should be C
With ABAC, masking of properties can be done. With this PII information shown to other users can be masked. Answer should be 'B'
Answer is C, we can achieve B using RBAC or CBAC practices, Option C is directly referring to an attribute ".Rating" Property
I agree with option B. With ABAC, accessing PII data can be prevented, even in the Designer Studio.
Shouldn't be B? You use PropertyEncrypt access control policy for this requirement