Concepts - Basics of the identity platform: Identity Fundamentals Flashcards
What is Identity and access management (IAM)?
IAM ensures that the right people, machines, and software components get access to the right resources at the right time.
Identity
A digital identity is a collection of unique identifiers or attributes that represent a human, software component, machine, or resource in a computer system.
What are examples of unique identifiers
- An email address
- Sign-in credentials (username/password)
- Bank account number
- Government issued ID
- MAC address or IP address
What are the 3 types of identities:
- Human identities
- Workload identities
- Device identities
What is authentication?
Authentication (AuthN) is the process of challenging a person, software component, or hardware device for credentials in order to verify their identity, or prove they’re who or what they claim to be.
What is Multi-factor authentication?
MFA is a security measure that requires users to provide more than one piece of evidence to verify their identities, such as:
- Something they know, for example a password
- Something they have, like a badge or security token
- Something they are, like a biometric (fingerprint or face)
What is Single Sign-on?
SSO allows users to authenticate their identity once and then later silently authenticate when accessing various resources that rely on the same identity.
What is Authorisation?
Authorisation (or AuthZ) validates that the user, machine, or software component has been granted access to certain resources.
What standard protocol can be used for AuthN?
OpenID Connect (OIDC)
What standard protocol can be used for AuthZ?
OAuth 2.0
What is an identity provider?
An identity provider creates, maintains, and manages identity information while offering authentication, authorisation, and auditing services.
What are examples of Cloud-based identity providers?
- Microsoft Azure Active Directory
- Amazon
- GitHub
