Access Control Flashcards
Name three types of access controls.
Administrative, Technical and Physical
Name an Administrative Control
Policy, Training, Awareness
Name a Technical Control
What you find on a computer
Name a physical control
Doors, Locks, Guards, Dogs
Name control types in order
Preventive, deterrent, corrective, detective, recover, compensating and directive
Name Authentication Components
Biometrics, Passwords, Token Devices, Memory Cards, Smart Cards, Cryptographic Keys
What is Discretionary Access Control (DAC)
dddd
Name the components of the CIA Triad
Confidentiality, Integrity, Availablity
What is a table of Subjects, Objects and permissible actions?
Access Control Matrix
What are small credit size items used for entry access sometimes shaped like a calculator?
Tokens
A series of numbers, used in confidentially by a user to verify their identity is?
PIN
What type of attack is most effective against passwords?
Brute-Force and Dictionary Attack
Which model give complete control of data, based on the level of access given to a specific user?
Mandatory Access Control
Access control is classified as which kind of Mechanism
Preventive
The first step in any access control is?
Identification
What authentication system requires two factors out of three, it is said to be using?
Two-Factor Authentication
What is the best way to destroy data?
Degauss then destroy
What is an active entity that request access to an object or data
Subject
What is a passive entity that contains info or data?
Oject
What is the ability of a subject to do something such as read, write, create, execute?
Access
What is a security feature that controls how subjects objects interact with each other?
Access Control
What grants access to resources based on a criteria list
Authorization
What is the requirement of having two of the three factors of authentication?
Strong Authentication (Two-Factor)
What happens when a user or administrator has more privileges than they need for the security of the system
Excessive Privelege
