In a capability-based access control model, which statement describes a capability?

Study for the PY103.16 Physical Security Test with flashcards and multiple-choice questions. Each question includes hints and explanations to help you prepare confidently and effectively. Get ready to ace your exam with our comprehensive study resources!

Multiple Choice

In a capability-based access control model, which statement describes a capability?

Explanation:
Capability-based access control relies on presenting a capability—a token or reference that encodes both the object and the operations allowed on it. The bearer’s possession of this credential grants exactly the specified access to that object, and the system verifies the token before permitting the action. This makes the ability to access resources tied to a transferable credential rather than to a fixed user attribute or role. It’s distinct from a user’s role list or attributes, from a physical badge used for entry, or from a blanket deny-by-default policy, which are not how capabilities function.

Capability-based access control relies on presenting a capability—a token or reference that encodes both the object and the operations allowed on it. The bearer’s possession of this credential grants exactly the specified access to that object, and the system verifies the token before permitting the action. This makes the ability to access resources tied to a transferable credential rather than to a fixed user attribute or role. It’s distinct from a user’s role list or attributes, from a physical badge used for entry, or from a blanket deny-by-default policy, which are not how capabilities function.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy