Implementing and Operating Cisco Enterprise Network Core Technologies (ENCOR) — Question 901

A system must validate access rights to all its resources and must not rely on a cached permission matrix. If the access level to a given resource is revoked but is not reflected in the permission matrix, the security is violated. Which term refers to this REST security design principle?

Answer options

• A. economy of mechanism
• B. complete mediation
• C. separation of privilege
• D. least common mechanism

Correct answer: B

Explanation

The correct answer is 'complete mediation' because it emphasizes the necessity for the system to validate access rights every time a resource is accessed, ensuring that revoked permissions are enforced. The other options do not specifically address the need for continual checks of permission states, which is crucial for maintaining security.