Understanding Cisco Cybersecurity Operations Fundamentals (CBROPS) — Question 161

Which security model assumes an attacker within and outside of the network and enforces strict verification before connecting to any system or resource within the organization?

Answer options

• A. Take-Grant
• B. Object-capability
• C. Zero Trust
• D. Biba

Correct answer: C

Explanation

The Zero Trust model is the correct answer because it is specifically designed to assume that threats may exist both externally and internally, necessitating strict access controls. In contrast, the Take-Grant model focuses on the transfer of access rights, the Object-capability model emphasizes the use of capabilities for access control, and the Biba model is primarily concerned with maintaining data integrity.