Which access control method restricts access based on the sensitivity of information contained within an object?

The access control method that restricts access based on the sensitivity of the information contained within an object is Mandatory Access Control (MAC). In MAC, access rights are assigned based on labels or classifications that define the sensitivity of the information and the user's clearance to access it. This means that access is controlled at a system level, and users cannot override or change the access settings—ensuring that sensitive data is protected according to its classification.

In MAC systems, users are assigned a security clearance level (such as confidential, secret, or top secret), and objects (such as files and folders) are categorized with the same levels. The system enforces access controls based on these levels, meaning a user can only access information that matches or is of a lower classification than their own clearance.

This approach provides a high level of data protection, especially in environments where security is critical, such as government and military operations. Other access control methods like DAC and RBAC are more flexible and user-driven, focusing on user identity or roles without necessarily classifying data sensitivity at the system level.