3.8 - Given a scenario, implement authentication and authorization solutions.

Question 1

Authentication management

Question 2

Password keys

Question 3

Password vaults

Question 4

TPM

Question 5

HSM

Question 6

Knowledge-based authentication

Question 7

Authentication/authorization

Question 8

Authentication/authorization- EAP

Question 9

Authentication/authorization - Challenge-Handshake Authentication Protocol (CHAP)

Question 10

Authentication/authorization - Password Authentication
Protocol (PAP)

Question 11

Authentication/authorization - 802.1X

Question 12

Authentication/authorization - RADIUS

Question 13

Authentication/authorization - Single sign-on (SSO)

Question 14

Authentication/authorization - Security Assertion Markup Language (SAML)

Question 15

Authentication/authorization - Terminal Access Controller
Access Control System Plus (TACACS+)

Question 16

Authentication/authorization - OAuth

Question 17

Authentication/authorization - OpenID

Question 18

Authentication/authorization - Kerberos

Question 19

Access control schemes

Question 20

Access control schemes - Attribute-based access control (ABAC)

Question 21

Access control schemes Role-based access control

Question 22

Access control schemes - MAC

Question 22

Access control schemes - Rule-based access control

Question 23

DAC

Answer 23

Discretionary access control

Used in most operating systems
– A familiar access control model
*
You create a spreadsheet
– As the owner, you control who has access
– You can modify access at any time
*
Very flexible access control
– And very weak security

Question 24

Access control schemes - Conditional access

Question 25

Access control schemes - Privileged access management

Question 26

Access control schemes - Filesystem permissions