What access control model assigns attributes to objects and uses logic to grant access?

The correct answer is Attribute-Based Access Control (ABAC) because this model uses specific attributes associated with both subjects (users) and objects (resources) to determine access rights. In ABAC, access decisions are made based on the evaluation of these attributes through logical conditions. For example, a user might be granted access to a document if they possess certain characteristics such as their department, role, and clearance level, along with the document's classification and sensitivity level.

This flexibility allows for more granular access control compared to other models, as it considers a wide range of attributes and conditions. ABAC is particularly suitable for dynamic environments and can adapt to various complex scenarios where traditional roles or policies may not suffice.

The other models, while having their own methodologies for granting access, do not employ the same attribute-based logic as ABAC. Role-Based Access Control (RBAC) is primarily focused on roles assigned to users, while Mandatory Access Control (MAC) is based on a system-wide policy enforced by a central authority. Rule-Based Access Control operates on specific rules rather than attributes and does not incorporate the flexible assignment of various attributes to make access decisions in the same way.