4.1 Compare and contrast identity and access management concepts. Flashcards

1
Q

What is the concept of uniquely naming and referencing each individual user, program, and system component?

A

Identity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Identification

A

The assertion or claiming of an identity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Authentication

A

The act of proving or verifying the claimed identity

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Authorization

A

The mechanism that controls what a subject can or can’t do with their access.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Accounting

A

A record that is preserved of who accessed the network, what resources they accessed, and when they disconnected from the network.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Multifactor Authentication

A

The requirement that a user must provide two or more authentication factors in order to prove their identity.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Federation or Federated Identity

A

a means of linking a subject’s accounts from several sites, services, or entities in to a single account. SAML

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Single Sign-On (SSO)

A

means that once a user is authenticated into the domain or network, they don’t need to reauthenticate to access resources on any domain or network entity.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Number 1 multifactor authentication in the world is

A

CAC and PIN

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

type 1 authentication

A

Something you know (PIN/Password)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

type 2 authentication

A

Something you have (CAC/Token)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

type 3 authentication

A

Something you are (Fingerprint/Iris)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Something you do

A

An action you take (How you sign your signature)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Somewhere you are

A

(Geo-location) Where you are located physically

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Kerberos

A

SSO for remote access.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

4 ways of doing SSO over the web?

A

SAML
Shibboleth
OpenID Connect
OAuth

17
Q

Security Assertion Markup Language

A

SAML-SSO on the Web-based on XML

18
Q

If you have a smart card that contains details of your iris coloring and retinal patterns, which two types of authentication would be involved in a successful access request?

A. What you have and what you do
B. What you do and what you are
C. What you are and what you know
D. What you have and what you are

A

D. What you have and what you are

19
Q

Bob trusts Glenn. Glenn trusts Jeff. Jeff trusts Mike. What relationship between Bob and Mike?

A. Federated ID
B. Bob is the domain admin and every trusts him.
C. Child Parent Trust Relationship
D. Transitive Trust Relationship

A

D. Transitive Trust Relationship