Welcome to Scribd!

Access Control Concepts Slides

Uploaded by

Rajan V

0% found this document useful (0 votes)

16 views25 pages

Original Title

access-control-concepts-slides

Copyright

Available Formats

PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Download as pdf or txt

0% found this document useful (0 votes)

16 views25 pages

Access Control Concepts Slides

Uploaded by

Rajan V

Copyright:

Available Formats

Download as PDF, TXT or read online from Scribd

Flag for inappropriate content

Download as pdf or txt

Jump to Page

You are on page 1of 25

Search inside document

Access Controls Concepts for CC℠

Access Controls Concepts

Kevin Henry
CISM CISSP CCSP

[email protected]
CC℠ Certification Examination

Domains Weights
1. Security Principles 26%
2. Business Continuity (BC), Disaster Recovery 10%
(DR), & Incident Response
3. Access Control Concepts 22%
4. Network Security 24%
5. Security Operations 18%
Access Controls Concepts for the CC℠
Certification
Agenda:

Access Controls Physical Access Logical Access

Concepts Controls Controls
Access Controls Concepts
Access
Enforcement

Access
Relationships Subject Object

Asset
Determines Owner

Access Rules (ACL)

Key Concepts

Separation of Duties Least Privilege Need-to-Know

Separation of Duties

AKA segregation of duties

Enforced through:
- Mutual exclusivity
- Dual control
- Roles

Bypassed by collusion
- Job rotation
- Mandatory vacations
Identification

Claim of unique identifier

- Account number
- Employee number
- Customer number
- Government issued identifier
- Email address
- User identifier/USER ID
- Process ID
Proofing of Identity

Establish ownership of the identity

- Secret question

Password resets
Modification to permissions
Identification

Unique (enables accountability)

Not shared (especially admins)
Secure registration process
- CAPTCHA
- Approval
Authentication
Authentication

Verify, validate, prove the Identity

- Proof of possession
- Secret question

What you:
- Know
- Have
- Are
What You Know

Password, passphrase, secret question

- Static value
- Subject to replay attack
- Should be changed on a periodic basis
What You Have

Employee ID badge
Token
Smartcard
Passport
What You Are

Biometrics
Behavioral
Physiological
Behavioral Biometrics

Voice print Signature dynamics Keystroke dynamics

Physiological
Biometrics
Iris scan
Retina scan
Palm print
- Venous scan

Fingerprint
Facial recognition
User concerns
-

Biometric -
-
Acceptance
Cost
Maintenance/registration
Node Authentication

Authentication based on device:

IP address MAC address RFID

Radio frequency
identification
Authentication is the validation
of the identity
Key Points Authentication is based on three factors:
Review - What you know
- What you have
- What you are
Authorization and Accounting
Authorization

Rights Privileges Permissions Granted to an

authenticated
entity
Permissions

Read, write, update

Execute, create, delete
- Least privilege
- Need to know
- Separation of duties
Unauthorized users cannot make
modifications
Authorized cannot make improper
modifications
Accounting/Auditing

Tracking and logging all Log retention

activity on a system
Regulatory
Associate all activity with an
identified user or process Business needs
Summary
This module set out the concepts of
access controls.
All authorized users should be identified,
authenticated, authorized and subject to
logging of all actions taken

SAD Report Activity
Document2 pages
SAD Report Activity
everchan18
No ratings yet
05 Kawasaki Vulcan 800 Service Manual
Document5 pages
05 Kawasaki Vulcan 800 Service Manual
api-283136228
0% (1)
IAM Audit
Document7 pages
IAM Audit
rajashi.shome
100% (1)
Real Estate
Document47 pages
Real Estate
varsha devarakonda1309
No ratings yet
230HW08
Document8 pages
230HW08
Terry
No ratings yet
IC 723 Voltage Regulators - Electronic Circuits and Diagram-Electronics Projects and Design
Document7 pages
IC 723 Voltage Regulators - Electronic Circuits and Diagram-Electronics Projects and Design
Dayanand Gowda Kr
No ratings yet
10 1 1 385 6682
Document432 pages
10 1 1 385 6682
Susana De León Aldaco
No ratings yet
Malnad College of Engineering, Hassan
Document48 pages
Malnad College of Engineering, Hassan
gowdanischith03
No ratings yet
Module5 - Identity and Access Management
Document84 pages
Module5 - Identity and Access Management
Hùng Đỗ
No ratings yet
Webinar 1.1 - Identity & Access Management
Document25 pages
Webinar 1.1 - Identity & Access Management
Kirsa Hernandez
No ratings yet
Webinar 1.1 - Identity & Access Management
Document25 pages
Webinar 1.1 - Identity & Access Management
Edward Murillo
No ratings yet
Lecture 14
Document29 pages
Lecture 14
Abrham Giday
No ratings yet
Ebook CISSP Domain 05 Identity and Access Management (IAM)
Document84 pages
Ebook CISSP Domain 05 Identity and Access Management (IAM)
Ab Parvize
No ratings yet
Cissp Chapter02
Document151 pages
Cissp Chapter02
thor.586400
No ratings yet
CISSP Domain5 IAM
Document4 pages
CISSP Domain5 IAM
samarjit.acharjee
No ratings yet
Isa - GRP-6 Identity Access Management
Document72 pages
Isa - GRP-6 Identity Access Management
alyzzamarienpanambitan
No ratings yet
Identity and Access Management PMI Westchester Quality SIG Presentation September 12 2017
Document20 pages
Identity and Access Management PMI Westchester Quality SIG Presentation September 12 2017
venkatesh VR
No ratings yet
CISSP-2022 Exam Cram Domain 5
Document49 pages
CISSP-2022 Exam Cram Domain 5
pazi_441395439
No ratings yet
Pertemuan 3 - Sesi 5 Dan 6
Document70 pages
Pertemuan 3 - Sesi 5 Dan 6
Sheila Najla
No ratings yet
Birlamedisoft: ELV Extremely Low Voltage Systems
Document56 pages
Birlamedisoft: ELV Extremely Low Voltage Systems
STANDARD EDUCATION ACADEMY M.E.P CENTER
No ratings yet
8 Access Control
Document18 pages
8 Access Control
Hưng Trần
No ratings yet
CISSP - 4 Access Control
Document74 pages
CISSP - 4 Access Control
Veli Anlama
No ratings yet
1-Introduction, IdAM, Network Devices
Document84 pages
1-Introduction, IdAM, Network Devices
malayajay.patel2021
No ratings yet
4.4 Identity and Access Management Architecture (IAM) Basic Concept and Definitions of IAM Functions For Any Service
Document4 pages
4.4 Identity and Access Management Architecture (IAM) Basic Concept and Definitions of IAM Functions For Any Service
Amudaria
No ratings yet
Itia01 Lesson 5
Document4 pages
Itia01 Lesson 5
Angelo Taruc
No ratings yet
Chapter 9 Security Planning - Physical
Document33 pages
Chapter 9 Security Planning - Physical
mdanishjr
No ratings yet
Physical Security Guide
Document22 pages
Physical Security Guide
Carito Rumino Fuentes
100% (1)
Identity Access Management
Document52 pages
Identity Access Management
Shourya Chambial
100% (3)
Pertemuan 2 - Information System Risk and Control
Document72 pages
Pertemuan 2 - Information System Risk and Control
Rey Ra
No ratings yet
An Executive Guide to Identity Access Management - 2nd Edition
From Everand
An Executive Guide to Identity Access Management - 2nd Edition
alasdair gilchrist
Rating: 4 out of 5 stars
4/5 (3)
Domain 5
Document27 pages
Domain 5
Supun
No ratings yet
Chapitre6-Cloud IAM
Document44 pages
Chapitre6-Cloud IAM
boussaa amani
No ratings yet
Cissp 2022 Update Dom5 Handout
Document49 pages
Cissp 2022 Update Dom5 Handout
namobhumi
No ratings yet
1-Identify and Access Management (IdAM), IAM ATTACKS-09-01-2024
Document14 pages
1-Identify and Access Management (IdAM), IAM ATTACKS-09-01-2024
dummyfr07
No ratings yet
Discretionary Access Control (DAC) : What Is Authentication?
Document7 pages
Discretionary Access Control (DAC) : What Is Authentication?
Pabitra Roy
No ratings yet
7 IAM Must-Haves To Reduce Your Cyber Insurance Premium
Document40 pages
7 IAM Must-Haves To Reduce Your Cyber Insurance Premium
Jayavignesh Zoho
No ratings yet
Security Program and Policies
Document29 pages
Security Program and Policies
dangerman
No ratings yet
Deep Identity Solution Overview - CC 14apr2016
Document66 pages
Deep Identity Solution Overview - CC 14apr2016
Christer Cruz
No ratings yet
Topic 6 - Identity & Access Management
Document27 pages
Topic 6 - Identity & Access Management
s.l.mills86
No ratings yet
4.0 Identity and Access Management
Document236 pages
4.0 Identity and Access Management
Crystal Torbush
No ratings yet
Third-Party-Service Provider-Audit
Document41 pages
Third-Party-Service Provider-Audit
v9853495
No ratings yet
Basic Security Control
Document26 pages
Basic Security Control
Abiyau Neo
No ratings yet
CISSP D5 Slides1
Document62 pages
CISSP D5 Slides1
spgethical
No ratings yet
Cybersecurity Essentials 3.0-Module13
Document56 pages
Cybersecurity Essentials 3.0-Module13
Kudzwai nyamuchengwe
No ratings yet
Logical Access Control
Document18 pages
Logical Access Control
Himanshu Gond
No ratings yet
Lecture 8 - Protection Mechanisms
Document87 pages
Lecture 8 - Protection Mechanisms
Umair Amjad
No ratings yet
Kisi Introduction To Access Control Systems
Document12 pages
Kisi Introduction To Access Control Systems
siva
No ratings yet
Basic Concepts of Access Control, Identification and Authentication
Document257 pages
Basic Concepts of Access Control, Identification and Authentication
Yuyao Guo
No ratings yet
Rohini 88739407873
Document6 pages
Rohini 88739407873
Shaista Tanveer
No ratings yet
IAM Security
Document29 pages
IAM Security
jaishree jain
No ratings yet
QCNTbVvT2S77nAV2uvRNA Audit-Scope-and-Goals
Document5 pages
QCNTbVvT2S77nAV2uvRNA Audit-Scope-and-Goals
ay71421777
No ratings yet
Chapter 3 Access Control Consideration 19 Mar 2016
Document15 pages
Chapter 3 Access Control Consideration 19 Mar 2016
Prima Intrusiano
No ratings yet
How Do You Understand The Segregation of Duties?
Document3 pages
How Do You Understand The Segregation of Duties?
Michal Machowski
No ratings yet
Unit5-AccessControl BIT5thSem
Document6 pages
Unit5-AccessControl BIT5thSem
tiwarisapana036
No ratings yet
Chapter-1 Access Control Systems & Methodology
Document8 pages
Chapter-1 Access Control Systems & Methodology
nrpradhan
No ratings yet
Assignment Here
Document10 pages
Assignment Here
Pabitra Roy
No ratings yet
Chapter 6 Authentication and Access Control - Unlocked
Document9 pages
Chapter 6 Authentication and Access Control - Unlocked
zoeyshaa
No ratings yet
Biometric Authentication EDIT
Document6 pages
Biometric Authentication EDIT
Desu Wajana
No ratings yet
Identity Access Management
Document29 pages
Identity Access Management
Ernest Kamrad Bnd
No ratings yet
IAS Chapter 4 Final
Document20 pages
IAS Chapter 4 Final
teshu wodesa
No ratings yet
NERC CIP Requirements and Netwrix Functionality Mapping
Document28 pages
NERC CIP Requirements and Netwrix Functionality Mapping
sentoubudo1647
No ratings yet
CC7178 Cyber Security Management: Presenter: Kiran Kumar Shah
Document37 pages
CC7178 Cyber Security Management: Presenter: Kiran Kumar Shah
Manish Sharma
No ratings yet
Identity and Access Management 1
Document6 pages
Identity and Access Management 1
catudayja
No ratings yet
Basics of Information Security
Document16 pages
Basics of Information Security
bhanumurthybeeraka
No ratings yet
A Survey On Identity and Access Management
Document4 pages
A Survey On Identity and Access Management
International Journal of Innovative Science and Research Technology
No ratings yet
Identity and Access Management: CISSP, #5
From Everand
Identity and Access Management: CISSP, #5
Selwyn Classen
No ratings yet
Tentative: Anna University, Chennai - 600 025
Document25 pages
Tentative: Anna University, Chennai - 600 025
Jon Cena
No ratings yet
Cis Edge Browser
Document5 pages
Cis Edge Browser
Bupeshkumar Rajendiran
No ratings yet
Azure Pipelines Succinctly
Document123 pages
Azure Pipelines Succinctly
vu van
No ratings yet
Pls Academy Pcde Student Slides 1 2307
Document158 pages
Pls Academy Pcde Student Slides 1 2307
cesarmarquez1
No ratings yet
MODULE 1 Introduction To Construction Estimates (Microsoft Excel Organization)
Document15 pages
MODULE 1 Introduction To Construction Estimates (Microsoft Excel Organization)
Mark Joseph Balagso
0% (1)
Introduction To Earned Duration
Document18 pages
Introduction To Earned Duration
Paulo André de Andrade
No ratings yet
SalesForceCopy JMX
Document60 pages
SalesForceCopy JMX
ReX_XaR_
No ratings yet
APL V80 SP2-Readme en
Document16 pages
APL V80 SP2-Readme en
Grant Douglas
No ratings yet
FLC 61200 Vdo Cockpit Eng en
Document8 pages
FLC 61200 Vdo Cockpit Eng en
Remy Mendoza
No ratings yet
Ju 041218022047 0 PDF
Document35 pages
Ju 041218022047 0 PDF
john145
No ratings yet
Product Evaluator's Guide: Pervasive Data Integration Platform
Document39 pages
Product Evaluator's Guide: Pervasive Data Integration Platform
Rishiraj Nanda
No ratings yet
Turnitin Tugas Kel 3 MPI
Document40 pages
Turnitin Tugas Kel 3 MPI
muh
No ratings yet
Advanced Help Desk Automation: A Project Report ON
Document11 pages
Advanced Help Desk Automation: A Project Report ON
Rachna Lal
No ratings yet
Implementation of Sieve of Eratosthenes Using Actors, JRuby and Akka - Gist
Document4 pages
Implementation of Sieve of Eratosthenes Using Actors, JRuby and Akka - Gist
mmyoung2
No ratings yet
S2750&S5700&S6720 V200R008C00 Configuration Guide - Basic Configuration
Document437 pages
S2750&S5700&S6720 V200R008C00 Configuration Guide - Basic Configuration
Pierre Gossen
No ratings yet
Essay
Document2 pages
Essay
Mariecon Montero
No ratings yet
InformationManagementSystemChapterII Siy 2.3BSIT
Document7 pages
InformationManagementSystemChapterII Siy 2.3BSIT
Danielle Siy
No ratings yet
Angor's Blog - Booting Android From External SD On Kobo Aura HD
Document33 pages
Angor's Blog - Booting Android From External SD On Kobo Aura HD
cila111
No ratings yet
Red Hat Openshift Local-2.24-Getting Started Guide-En-Us
Document36 pages
Red Hat Openshift Local-2.24-Getting Started Guide-En-Us
squaresh
No ratings yet
Skill Up Sept - Flutter
Document2 pages
Skill Up Sept - Flutter
Anuj Kundar
No ratings yet
Numdfgh CSE15
Document839 pages
Numdfgh CSE15
sagarsrinivas
No ratings yet
Implementation Priority Queue Using Array
Document3 pages
Implementation Priority Queue Using Array
Eced
No ratings yet
7SJ62-User Manual PDF
Document536 pages
7SJ62-User Manual PDF
dannranger
No ratings yet
DFD Sistem e Banking
Document11 pages
DFD Sistem e Banking
Arif Budiman
100% (1)