Access Control Flashcards

1
Q

What is DAC?

A

Discretionary Access Control - the owner sets the permissions on who can access data

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What is MAC?

A

Mandatory Access Control - the computer system determines access control. Relies on labels such as high trust, medium trust, low trust etc.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What is considered to be the most secure access control model?

A

MAC - Access cannot be altered by any user but only a centralized system administration, resulting in defined, confidential, and well-protected data.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What is RBAC?

A

Role Based Access Control - similar to MAC where it is controlled by a system but utilizes a set of permissions instead of a single data label such as “high trust”

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is ABAC?

A

Attribute Based Access Control - dynamic model of access control that is context aware using conditional statements

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is the concept of implicit deny?

A

All access controls should deny by default and only allow access when explicitly stated

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is the concept of separation of duties?

A

When more than one person is required to conduct a sensitive task or operation. Ex: launching a nuke requires more than one person

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Why would an organization implement job rotation?

A

Increases security and accountability. For example: if bob is rotated out of his job and alice comes in to fill his role, she can discover if bob has been doing anything that would be considered fraudulent, compromise security, harm the organization etc.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What program would you use to change permissions in linux?

A

chmod

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

In chmod, what do the numbers 4, 2 and 1 represent?

A

4 = R - read
2 = W - write
1 = X - execute

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Can you combine numbers in chmod?

A

Yes

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

In chmod, if you have the number 760 what does it mean?

A

7 - owner can R,W,X
6 - group can RW
0 - all users have no access

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

What are the permissions categories in linux?

A

Owner - U
Groups - G
All Users - O or A

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

What is privilege creep?

A

When a user gets additional permissions over time as he rotates through different roles

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Permissions are inherited by default from the parent when a new folder is created - True or False?

A

True

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Any permissions added/removed from the parent folder will not pass to the child by default too. True or False

A

False

17
Q

What is permissions propagation?

A

When permissions are passed to a subfolder from the parent folder through inheritance

18
Q

What is UAC?

A

User Account Control - security component in windows that keeps a user in standard user mode instead of acting as an administrative user