Identity & Access Management

Question 1

What is CHAP for ?

Answer 1

Best solution against session hijacking.

Question 2

What is OpenID good for ?

Answer 2

Includes Oauth and works with a REST api.

Question 3

What is TPM ?

Answer 3

used for authentication, hardware based access control

Question 4

How to handle many passwords ?

Answer 4

Implement a password manager.

Question 5

What is CRL ?

Answer 5

Certification Revocation List

Question 6

The 802.1x protocol handels …

Answer 6

… authentication at the switch.

Question 7

What is NIPS ?

Answer 7

NIPS. (Network Intrusion Prevention System)

• Active / in band
• uses sensors
• Detection Methods
  
  • behaviour/anomaly
  • signature based
  • rule based
  • heuristic (combination of the above)
• cant read encrypted traffic!

Question 8

Which is the most important in managing account permissions?

Answer 8

Account Recertification

Question 9

Which Protocol mitigate easy network enumeration ?

Answer 9

LDAP, it is considered a directory or a phonebook of your network and if you make LDAP unavailable then the footprint of your network is not as easily obtained.

Question 10

What is NIDS ?

Answer 10

NIPS. (Network Intrusion Prevention System)

- Passive / out of band

Question 11

What is DEP refer to ?

Answer 11

DEP (Data Execution Prevention)

- used on WIN systems

Question 12

What is a custodian security role ?

Answer 12

Human Resource Employee

Question 13

What is an object in mandantory access control ?

Answer 13

Files

Question 14

What is Type I in id management refers to ?

Answer 14

… something you know.

Question 15

What is Type II in id management refers to ?

Answer 15

… something you have.

Question 16

What is Type III in id management refers to ?

Answer 16

… something you are.