Access Control Flashcards

1
Q

Access Control categories

A

Administrative (Directive)
Technical
Physical

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Administrative control

A

Organizational policies and procedures (Based on organizational policies)
Regulation
Training and awareness
Includes how to hire and fire people

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Technical Controls

A

Logical controls
Hardware/software/firmware - firewall, router, encryption

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Physical Controls

A

Locks, fences, guards, dogs, gates, bollards, fence, posts with guards, doors with card swipe

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Access Control Types

A

Preventative
Detective
Corrective
Recovery
Deterrent
Compensating
many can be multiple types

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Preventative

A

Prevent action from happening
Examples least privileged, drug test, IPS, firewall, encryption

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Detective

A

Control that detect during or after an attack
Examples IDS, CCTV, alarms, antivirus

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Corrective

A

Control that correct an attack
Examples antivirus, patches, IPS

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Recovery

A

Control that helps us recover after an attack
Disaster recovery environment, backups, high availability environments

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Deterrent

A

Controls that deter an attack
Examples fences, security guards, dogs, lights, beware of dogs sign

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Compensating

A

Controls that compensate other controls that are impossible or too costly to implement

How well did you know this?
1
Not at all
2
3
4
5
Perfectly