Which access-control approach grants general access unless an explicit prohibition is in place?

Prepare for the Information Security Principles and Frameworks Test. Enhance your understanding with detailed questions, hints, and explanations. Ace your exam with confidence!

Multiple Choice

Which access-control approach grants general access unless an explicit prohibition is in place?

Explanation:
The situation describes a default-permit approach with a blocking mechanism: access is allowed by default, and only explicit prohibitions stop it. That is a blocklist (blacklist) approach, where the list contains those or items that are denied, and everything not on the list is permitted. The other ideas would invert the behavior: an allowlist (whitelist) grants access only to explicitly permitted users or items, denying the rest; a deny list is essentially another term for a blocklist, and a permit list is another term for an allowlist.

The situation describes a default-permit approach with a blocking mechanism: access is allowed by default, and only explicit prohibitions stop it. That is a blocklist (blacklist) approach, where the list contains those or items that are denied, and everything not on the list is permitted. The other ideas would invert the behavior: an allowlist (whitelist) grants access only to explicitly permitted users or items, denying the rest; a deny list is essentially another term for a blocklist, and a permit list is another term for an allowlist.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy