Forums
Information Systems
Sounds like it to me. Because if an entity adopts RBAC, it assigns activities to users based on Need to know basis and thereby implements a control over its IS resources. If RBAC is indeed a Logical Access Control, it is mind-boggling fact that there is no mention of the same under topic Logical Access Control in chapter 3.
Answers (1)