Lecture 6.5 Flashcards
Technical controls – ?
Identify
Firewalls and VPN
essential
Technical controls – ?
Identify
Firewalls and VPN
essential
Enforcing policy for many ?
Identify
Firewalls and VPN
IT functions
Not involve direct ?
Identify
Firewalls and VPN
human control
Improve organization’s ability to ?
Identify
Firewalls and VPN
balance
?
Use data classification schemes
Identify
Firewalls and VPN - Access Control
Mandatory access control (MAC)
?
Give users and data owners limited control over access
Identify
Firewalls and VPN - Access Control
Mandatory access control (MAC)
?
Each collection of information is rated
Identify
Firewalls and VPN - Access Control
Data classification schemes
?
Each user is rated
Identify
Firewalls and VPN - Access Control
Data classification schemes
?
May use matrix or authorization
Identify
Firewalls and VPN - Access Control
Data classification schemes
?
Managed by central authority
Identify
Firewalls and VPN - Access Control
Nondiscretionary controls
?
Tied to the role a user performs
Identify
Firewalls and VPN - Access Control
Role-based
?
Tied to a set of tasks user performs
Identify
Firewalls and VPN - Access Control
Task-based
?
Implemented at the option of the data user
Identify
Firewalls and VPN - Access Control
Discretionary access controls
?
Used by peer to peer networks
Identify
Firewalls and VPN - Access Control
Discretionary access controls
? ?? ??? ????
(4) All controls rely on
Enumerate
Firewalls and VPN - Access Control
- Identification
- Authentication
- Authorization
- Accountability
Unverified entity – ?
Identify
Firewalls and VPN - Access Control - Identification
supplicant
Seek access to a resource by ?
Identify
Firewalls and VPN - Access Control - Identification
label
?
is called an identifier
Identify
Firewalls and VPN - Access Control - Identification
Label
Mapped to one & only one ?
Identify
Firewalls and VPN - Access Control - Identification
entity
Authentication:
* Something a supplicant ?
* Something a supplicant ??
* Something a supplicant ???
Identify
Firewalls and VPN - Access Control - Authentication
- knows
- has
- is
Matches supplicant to ?
Identify
Firewalls and VPN - Access Control - Authorization
resource
Often uses access control ?
Identify
Firewalls and VPN - Access Control - Authorization
matrix
(3) Handled by 1 of 3 ways
Enumerate
Firewalls and VPN - Access Control - Authorization
- Authorization for each authenticated users
- Authorization for members of a group
- Authorization across multiple systems