CompTIA Security+ Exam Prep

Answer: D - Access control layers consist of administration controls, physical controls, and technical controls. Administrative controls are directives that will dictate how all the supporting mechanisms will fall into place and include: policy and procedures, personnel controls, supervisory structure, security-awareness training, and testing. Physical controls support and work with administrative and technical controls to supply the right degree of access controls and include: network segregation, perimeter security, computer controls, work area separation, data backups, cabling, and control zones. Technical controls are software tools used to restrict subjects’ access to objects and include: system access, network architecture network access, encryption and protocols, and auditing.