Identity and Access Management (IAM) Solutions Flashcards
What does Identity and Access Management (IAM) ensure?
Right individuals have right access to right resources for right reasons
What are the components of IAM?
- Password Management
- Network Access Control
- Digital Identity Management
What does the acronym IAAA stand for in IAM processes?
Identification, Authentication, Authorization, and Accounting
What is the purpose of Identification in IAM?
Claiming identity, e.g., username, email address
What is Authentication in IAM?
Verifying user, device, or system identity
What does Authorization determine after authentication?
User permissions
What is Accounting in IAM?
Tracking and recording user activities
What are the IAM processes?
- Provisioning
- Deprovisioning
- Identity Proofing
- Interoperability
- Attestation
What are the factors of Multi-Factor Authentication (MFA)?
- Something you know
- Something you have
- Something you are
- Something you do
- Somewhere you are
What are examples of MFA implementations?
- Biometrics
- Hard tokens
- Soft tokens
- Security keys
- Passkeys
What are best practices for Password Security?
- Password policies
- Password managers
- Passwordless authentication
What types of Password Attacks exist?
- Spraying Attacks
- Brute Force Attacks
- Dictionary Attacks
- Hybrid Attacks
What is Single Sign-On (SSO)?
User authentication service using one set of credentials for multiple applications
What technologies are used in SSO?
- LDAP
- OAuth
- SAML
What is Federation in IAM?
Sharing and using identities across multiple systems or organizations
What does Privileged Access Management (PAM) involve?
- Just-in-Time (JIT) Permissions
- Password Vaulting
- Temporal Accounts
What are the different Access Control Models?
- Mandatory Access Control
- Discretionary Access Control
- Role-based Access Control
- Rule-based Access Control
- Attribute-based Access Control
What is the purpose of Provisioning in IAM?
Creating new user accounts, assigning permissions, and providing system access
What does Deprovisioning mean in IAM?
Removing access rights when no longer needed
What is Identity Proofing?
Verifying a user’s identity before creating their account
What is Interoperability in IAM?
Ability of different systems, devices, and applications to work together and share information
What is Attestation in IAM?
Validating that user accounts and access rights are correct and up-to-date
What is the definition of Multi-Factor Authentication (MFA)?
A security system requiring multiple methods of authentication from independent categories of credentials
What are the five categories of authentication for MFA?
- Something You Know
- Something You Have
- Something You Are
- Somewhere You Are
- Something You Do