CHAPTER SUMMARY
In this chapter, you learned that understanding the significance of information within an enterprise helps an administrator grant proper access to those working within the infrastructure. Limiting access reduces risk for an enterprise and assists in ensuring data does not get into the wrong hands. Limiting access can also be a hindrance to employees; therefore, planning is essential before implementing controls.
Access to systems and data should be granted only after a user is authenticated. Types of authentication, their benefits, and their risks are factors in the planning process to keep employees, customers, and data safe.
KEY CONCEPTS AND TERMS
Advanced Encryption Standard (AES)
Attribute-based access control (ABAC)
Bring Your Own Device (BYOD) policy
Commercial off-the-shelf (COTS)
Common Criteria for Information Technology Security Evaluation
Counter Mode Cipher Block Chaining Message Authentication Protocol (CCMP)
Denial of service (DoS) attack
Discretionary access control (DAC)
History-based access control (HBAC)
Identity-based access control (IBAC)
Mandatory access control (MAC)
Multilevel security (MLS) system
Multiple single level (MSL) environment
Open Systems Interconnection (OSI) Reference Model
Organization-based access control (OrBAC)
Risk-adaptive access control (RAdAC)
Role-based access control (RBAC)
Rule-based access control (RuBAC)
Simultaneous Authentication of Equals (SAE)
CHAPTER 5 ASSESSMENT
- What does ACL stand for?
- Access control level
- Access control limit
- Access control logic
- Access control list
- List the four types of access control models.
- Which of the following are components of a Kerberos system? (Select two.)
- TKIP
- AS
- TGS
- BGP
- A switch is a device used on which layer of the OSI model?
- Layer 1
- Layer 2
- Layer 4
- Layer 5
- Which of the following are authentication factors? (Select three.)
- Something you need
- Something you have
- Something you are
- Something you believe
- Something you know
- VLANs are used to segment networks.
- True
- False
- Which are types of access control lists? (Select two.)
- DACL
- MACL
- SACL
- TACL
- Of the following, what is the most recent wireless security standard?
- WPA
- WPA2
- WPA3
- WEP
- Which of the following is the most secure encryption method for WLANs?
- DAC
- WEP
- WPA
- MAC
- How many hexadecimal digits are provided by IEEE for vendor identification?
- 6
- 12
- 18
- 24
- Which IEEE standard defines WLANs?
- 802.11
- 802.10
- 802.5
- 802.1q
- Which of the following is an example of SSO?
- Keystroke logger
- Trojan horse
- Kerberos
- Broadcast domains
- Which of the following is an access control system in which rights are assigned by the owner of the resource?
- Discretionary access control
- Mandatory access control
- Role-based access control
- Media access control
- Which of the following is an access control system in which rights are assigned based on a user’s role rather than his or her identity?
- Discretionary access control
- Mandatory access control
- Role-based access control
- Media access control
- Which of the following is an access control system in which rights are assigned by the system itself?
- Discretionary access control
- Mandatory access control
- Role-based access control
- Media access control