IAAA Flashcards
identification
identify an entity
is identification and authentication the same
no
what is authentication
proof who you claim to be
way of authentication
password, PIN, Biometric
what is no repudiation
prevent someone from denying the authenticity of a statement or their actions
authorization
level of clearance
what are clearances
the type of data, system, application you have access to.
accountability
holding user responsible for their action
what’s account audit
to make sure that privileges are appropriately assigned and updated
provisioning (Identity lifecycle)
create new account n assign privileges ( Authorization)
review (identity lifecycle)
- periodic account review
- disable inactive account
- audit privilege creep
what is privilege creep
when someone accumulates privileges over time as their roles change, but older privileges are not relinquished
revocation (identity lifecycle)
disable account of employee who leave, retired, or are terminated
Authentication factor
type 1
something that you know:
.password
.pin
authentication factors
type 2
something that you have
-smart card
-mobile SIM
authentication factors
type 3
something that you are
-retina pattern
-finger prints
what’s MFA
MFA stands for multifactor Authentication. it’s combine two or more types to strengthen the authentication process
roles of accountability
audit of logs and account to identify any violations
authorization min
give a subject the minimum data/ info and privilege that he/she needs to complete their job.
it’s the fundamental idea in cybersecurity to provide least privileges
why is minimum privileges important?
if privileges is unchecked, they can cause serious cybersecurity repercussions. they can be abused
how is accountability enforced
log audits, account audits, job rotations, and non-repudiation
