QUESTION ONE [2 points]: Classify each of the following as an example of a mandatory, discretionary, or role-based access control, or a combination thereof. Justify your answers. a) The file access control mechanisms of the UNIX operating system b) A company hires a member of a shared team whos in charge of the security and hosting of the system. c) A military facility in which only generals can enter a particular room d) A university registrar's office, in which a faculty member can see the grades of a particular student provided that the student has given written permission for the faculty member to see them. QUESTION TWO [3 points]: Consider a computer system with three users: Alice, Bob, and Cyndy. Alice owns the file alicerc, and Bob and Cyndy can read it. Cyndy can read and write the file bobrc, which Bob owns, but Alice can only read it. Only Cyndy can read and write the file cyndyrc, which she owns. Assume that the owner of each of these files can execute it. a) Create the corresponding access control matrix. b) Cyndy gives Alice permission to read cyndyrc, and Alice removes Bobs ability to read alicerc. Show the new access control matrix. QUESTION THREE [2 points]: Alice can read and write to the file x, read the file y and execute the file z. Bob can read x, read and write to y and has no access to z. a) Write access control lists for this situation. b) Write capability lists for this situation.