CISSP certification: Subject and object.

Post author:Thor Pedersen
Post published:September 10, 2017
Post category:CISSP Certification / CISSP, CISM, CISA, and PMP BLOG / IT security / Updates

In access control, we use the terms subjects and objects. Knowing the difference and what both can do is important for the exam.

Subject – (Active) Most often users, but can also be programs – Subjects manipulate object.

Object – (Passive) Any passive data (both physical paper and data) – Objects are manipulated by subject.

It is possible to be both at different times, an active program is a subject; when closed, the data in program can be object.

Tags: (ISC)², CISSP, CISSP CBK, CISSP Certification, CISSP class, CISSP domains, CISSP Practice questions, CISSP Salary, CISSP study, CISSP training

Thor Pedersen

IT, information security, and project management trainer Best selling CISSP. CISM, and PMP instructor on Udemy. CISSP, CISM, C|EH, CDPSE, PMP, 2x CCNP, CompTIA Security+, SCP, 3x CCNA, et. Al.

CISSP certification: Subject and object.

Thor Pedersen

You Might Also Like

CISSP Tips and Tricks | How to build your CISSP study plan

CISSP certification: Rules, laws and regulations (US).

A password for the Hawaii emergency agency was hiding in a public photo, written on a Post-it note