New Year Sale ! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions

CSA Exam CCZT Topic 1 Question 11 Discussion

Actual exam question for CSA's CCZT exam
Question #: 11
Topic #: 1
[All CCZT Questions]

In SaaS and PaaS, which access control method will ZT help define

for access to the features within a service?

Show Suggested Answer Hide Answer
Suggested Answer: B

ABAC is an access control method that uses attributes of the requester, the resource, the environment, and the action to evaluate and enforce policies. ABAC allows for fine-grained and dynamic access control based on the context of the request, rather than predefined roles or privileges. ABAC is suitable for SaaS and PaaS, where the features within a service may vary depending on the customer's needs, preferences, and subscription level. ABAC can help implement ZT by enforcing the principle of least privilege and verifying every request based on multiple factors.

Reference=

Attribute-Based Access Control (ABAC) Definition

General Access Control Guidance for Cloud Systems

A Guide to Secure SaaS Access Control Within an Organization


Contribute your Thoughts:

Leota
5 months ago
That's true, PBAC could provide specific privileges to different users.
upvoted 0 times
...
Elliott
5 months ago
I think privilege-based access control (PBAC) might be useful for more granular control.
upvoted 0 times
...
Jonell
5 months ago
RBAC could work well too, especially for defining roles within a service.
upvoted 0 times
...
Reuben
6 months ago
I believe role-based access control (RBAC) could also be a good option.
upvoted 0 times
...
Leota
6 months ago
I agree, ABAC seems like the most flexible method for controlling access.
upvoted 0 times
...
Jonell
6 months ago
I think ZT will help define attribute-based access control (ABAC) for access.
upvoted 0 times
...
Joseph
6 months ago
I believe ZT will help define access using ABAC to more granularly control features.
upvoted 0 times
...
Ethan
7 months ago
I'm not sure, I think it could also be C) Role-based access control (RBAC).
upvoted 0 times
...
Serina
7 months ago
I agree, ABAC makes sense for defining access in SaaS and PaaS.
upvoted 0 times
...
Kassandra
7 months ago
I think the answer is B) Attribute-based access control (ABAC).
upvoted 0 times
...

Save Cancel