15 - User Authentication and Access Control Overview Flashcards
What does AAA stand for?
Authentication, authorization, and accounting
___ describes the process of granting or denying access to data and network resources as well as verifying that the security controls are working properly.
AAA (Authentication, authorization, and accounting)
Confirms the user is who they claim to be. First step in AAA.
Authentication
Defines what the user is able to access. Second step in AAA.
authorization
Report on the access that a user has been granted, including how often the user accesses the resource or data. Final step in AAA.
accounting
What does MFA stand for?
Multi-factor authentication
What does 2FA stand for?
2-factor authentication
The point of ___ is that even if someone steals your password through social engineering, brute force attacks, or any other way, they cannot access your device or data without the key fob, or without a fingerprint or face.
MFA
Which part of AAA does the following describe:
Confirm user is who they claim to be
Authentication
Which part of AAA does the following describe:
Usernames and passwords
Authentication
Which part of AAA does the following describe:
PKI certificates
Authentication
What does PKI stand for?
public key infrastructure
Which part of AAA does the following describe:
Define what the user can access
Authorization
Which part of AAA does the following describe:
Give permissions to a user
Authorizations
Which part of AAA does the following describe:
Write and delete, or read-only
authorization
