ITEC102PART1

Question 1

Making Authorization decisions based on the identity and/or role(s) or entity on whose behalf an application is executing

Answer 1

Role-based Security

Question 2

Distinguishing characteristic of the entity on whose behalf an application is executing.

commonly a user or account name.

Answer 2

Identity

Question 3

The encapsulation of identity and role information-everything you need to know about an entity in order to make authorization decisions.

Answer 3

Principal

Question 4

The CLR provides an infrastructure for managing identity and role information.

Answer 4

Role-based Security Infrastructure

Question 5

it authenticates the user and provides the identity and role information the CLR

Answer 5

Host

Question 6

it make the information available to code via API’s and permission demands (Both imperative and declarative )

Answer 6

CLR ( common language runtime )

Question 7

We dont create a principal object until you ask for it

Answer 7

Lazy authentication

Question 8

Determining the identity of the party/entity making a request.

Answer 8

Authentication

Question 9

Determining whether to honor a request made by an identified party/entity.

Answer 9

Authorization

Question 10

5 agenda of .net framework

Answer 10

The problem: customer scenarios
The solution: .Net security
Role based security
Evidence based security
Demos

Question 11

2 element fo .net security model

Answer 11

Role based security
Evidence based security

Question 12

role based security common terms ( 3 )

Answer 12

Role based security
Identity
Principal