Identity - the primary security perimeter Flashcards

1
Q

What is an identity?

A

Things that define/characterize a person or something

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What can identity be associated with?

A

User
application
device
Other

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

What are the four pillars of identity infrastructure?

A

Administration - creating/managing identities for users, devices and services
Authentication- proving a person is who they say they are
Authorization - deciding what that person can do
Auditing - tracking who does what/ reports and alerts

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

What are the 3 entities of modern authentication?

A

Servers
Clients
Identity providers (IdP)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

What is the use of an Identity Provider (IdP)?

A

they create, maintain and manage identity information while offering authentication, authorization and auditing services

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

What is the role of a token given to the client by the IdP?

A

the security token is given to the client (mobile/laptop) and is then sent to the server. The server then validates the security token via its “trust relationship” with the IdP.
The token allows the user/application to access the requested resources

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is an example of a cloud based IdP?

A

Microsoft Entra ID

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is single sign on (SSO)?

A

user is able to log in once with one set of credentials that will allow access to multiple applications or resources

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is the term given to SSO between multiple IdPs?

A

Federation

How well did you know this?
1
Not at all
2
3
4
5
Perfectly