Certified Information Systems Security Professional (CISSP) — Question 48

What is the BEST way to restrict access to a file system on computing systems?

Answer options

• A. Use least privilege at each level to restrict access.
• B. Restrict access to all users.
• C. Allow a user group to restrict access.
• D. Use a third-party tool to restrict access.

Correct answer: A

Explanation

The correct answer, A, emphasizes the principle of least privilege, ensuring that users have only the access necessary for their roles, which reduces the risk of unauthorized access. Options B and C are either too restrictive or too focused on user groups without the broader application of least privilege. Option D may introduce complexity and does not necessarily guarantee effective access control compared to the established principle in option A.