Lesson 3 Authorization and Access Control- C836. Questions & Answers, Rated A+
Lesson 3 Authorization and Access Control- C836. Questions & Answers, Rated A+ Attributes of a particular individual, such as height - -Subject attributes allows us to specify where the party should be allowed or denied access, and access control enables us to manage this access at a more granular level. - -Authorization Authorization allows us to specify where the party should be allowed or denied access, and _________ enables us to manage this access at a more granular level. - -access control dictates that we should only allow the bare minimum of access to a party—this might be a person, user account, or process - -principle of least privilege What dictates that we should only allow the bare minimum of access, as needed? A Policy B User rights C Principle of least privilege D ACL - -C Principle of least privilege four basics tasks of access controls - -Allowing access, Denying access Limiting access and revoking access is simply a set of resources devoted to a program, process, or similar entity, outside of which the entity cannot operate. We use sandboxes to prevent their contents from accessing files, memory, and other system resources with which they should not be interacting - -sandbox access controls, there are two main methods that we might use - -access control lists and capabilities often referred to as "ackles," are a very common choice of access control implementation. are usually used to control access in the file systems on which our operating systems run and to control the flow of traffic in the networks to which our systems are attached. - -Access control lists (ACLs) When we look at the ACLs in most file systems, we commonly see three permissions in use - -read, write, and execute Permissions in network ACLs tend to be binary in nature, generally consisting of - -allow and deny filtering can take the form of dropping traffic from individual IP addresses, to ranges, to the entire IP space of large organizations, ISPs, or even entire countries. This practice is commonly referred to as - -blackholing
Geschreven voor
- Instelling
- Western Governors University
- Vak
- WGU C836 Fundamentals Of Information Security
Documentinformatie
- Geüpload op
- 23 augustus 2023
- Aantal pagina's
- 11
- Geschreven in
- 2023/2024
- Type
- Tentamen (uitwerkingen)
- Bevat
- Vragen en antwoorden
Onderwerpen
-
lesson 3 authorization and access control c836 q
Ook beschikbaar in voordeelbundel