What characterizes Discretionary Access Control?

Discretionary Access Control (DAC) is characterized by the flexibility it offers in managing access to data. The fundamental principle of DAC is that data owners or resource owners have the authority to set policies for their own data. This decentralized approach allows the individuals who create or own specific resources to determine who can access those resources and what level of access they have, whether that be read, write, or execute permissions.

Under DAC, permissions can be easily modified by the data owner, enabling a more personalized security management system, which is particularly useful in environments where data sharing and collaboration are common. It contrasts with more rigid access controls that are enforced uniformly across the organization, making it adaptable to various use cases and user needs.

The other options represent different types of access control mechanisms. Centralized control enforced by administrators is more typical of mandatory access control systems, where a strict policy is applied uniformly across all users. Access control based solely on user job title suggests role-based access control (RBAC), where permissions are tied directly to the role within the organization, which is different from the discretionary nature of DAC. Rigid security policies imply a lack of flexibility and adaptability inherent in DAC, where owners can modify access rights as needed.