Imagine that you are the information systems security specialist for a medium-sized federal government contractor.
Imagine that you are the information systems security specialist for a medium-sized federal government contractor. The chief security officer (CSO) is worried that the organization\’s current methods of access control are no longer sufficient. In order to evaluate the different methods of access control, the CSO requested that you research mandatory access control (MAC), discretionary access control (DAC), and role-based access control (RBAC). Then, prepare a report addressing the positive and negative aspects of each access control method. This information will be presented to the board of directors at their next meeting. Further, the CSO would like your help in determining the best access control method for the organization.
Instructions
Write a 3–5 page paper in which you: Explain in your own words the elements of the following access control methods: Mandatory access control (MAC).Discretionary access control (DAC).Role-based access control (RBAC).Compare and contrast the positive and negative aspects of employing a MAC, DAC, and RBAC. Suggest methods to mitigate the negative aspects for MAC, DAC, and RBAC. Evaluate the use of MAC, DAC, and RBAC methods in the organization and recommend the best method for the organization. Provide a rationale for your response. Speculate on the challenges that may arise if the organization applies the method you chose. Suggest a strategy to address each challenge. Use at least three quality resources in this assignment. Note: Wikipedia and similar websites do not qualify as quality resources. This course requires the use of Strayer Writing Standards. For assistance and information, please refer to the Strayer Writing Standards link in the left-hand menu of your course. Check with your professor for any additional instructions. The specific course learning outcome associated with this assignment is: Determine the strengths and weaknesses of MAC, DAC, and RBAC methods of access control.
Answer preview to imagine that you are the information systems security specialist for a medium-sized federal government contractor.
APA
1073 words