2.1 – Logical Access Control Flashcards
1
Q
- Principle of least privilege
A
o Users only given access to level required for their work
2
Q
- ACL: Access Control List
A
o List of rules on a device that defines who can access
3
Q
- MFA: Multifactor Authentication [2FA]
A
o Requires users to provide 2 or more types of authentications to gain access
4
Q
Something you know
A
username & password
PIN
Answer security question
5
Q
Something you have
A
smart card
email
hard token
soft token
SMS
Voice call
authenticator app
6
Q
Something you are
A
biometrics authentication
fingerprints
handprint
retina scan
palm scan
7
Q
Somewhere you are
A
based on geolocation
8
Q
Something you do
A
perform a specific action
9
Q
- Hard Token
A
hardware device used to generate a number for logins
10
Q
- Soft Token
A
same as Hard Tokens but an app on phones
o Email, SMS, voice, authenticator app