IAS101 Q1-Q2

ACL controls who has access to the resource and the data owner sets the rights or permissions.

If a business has multiple shifts with large groups of employees coming and going at odd hours, an Access Control System can help organize the chaos and inform you if an employee is in the building when they shouldn’t be.

When an employee quits and fails to return their keys, the business is stuck with the expense of making new keys and possibly even changing the locks.

If the rule is matched we will be denied or allowed access.

An Access Control System allows a business to give only approved or specially trained employees access to areas that may hold valuable or dangerous equipment.

Many businesses have documents or data that should not be accessible to everyone in the company.

Identity and Access Management is also called a ________?

It is not determined for individual users.

To ensure that someone hasn’t snuck into the building.

Is a security technique that regulates who or what can view or use resources in a computing environment.

An integrated access control system will allow a business to grant access to employees who need to enter multiple or all buildings.

The permissions identify the actions the subject can perform on the object.

Having a building-wide system can protect your employees, patrons, information, equipment and other assets without question.

Clearance labels are assigned to users who need to work with resources.

Solutions have become more prevalent and critical in recent years as regulatory compliance requirements have become increasingly more rigorous and complex.

Is the estimate of the average amount of work needed to guess a password

It is important to realize that people will share or reuse their passwords on multiple accounts unless you provide them with some other method of allowing specific individuals to access information in their accounts.

Identification is the process of ensuring that a user, program, or device is the entity it claims to be.

The collection and validation of identity information.

Is the set of processes for managing user attributes and policies that determine a user's access rights to an information resource.

Happens when a user account accumulates privileges over time as roles and assigned work tasks change.

Many information systems–such as e-mail, learning management systems, library databases, and grid computing applications–require users to authenticate themselves (typically with a username and password).

Happens when a user has more access or permissions than the assigned work tasks and/or role requires.

Users may have to remember multiple passwords for different systems, especially if Single Sign-On is not in use for all institutional systems.

Establishing an IAM program is not an easy task. Many stakeholders, technology areas, policies and processes must work together for a scalable and strong IAM Program.

Is the measure of difficulty of guessing the easiest single password to guess in the population. Password entropy is expressed in bits.

Is a different way of thinking about a "secret" or "something you know".

Aligning collected data and matching an actual person to it.

Is a mathematical way to measure the difficulty of guessing or determining a password.

Is the use of an additional factor to minimize the probability of fraudulent authentication.