Authentication
The most common type of user authentication
What is a password?
Access control method in which rights are assigned to a role instead of manually to each individual user.
role-based access control (RBAC)
Agreement between a group of organizations to allow subscribers to use one set of credentials to access all networks belonging to the organizations in the group.
federated identity management (FIM)
Microsoft technology is used to govern security by limiting what a standard user is able to do on a system.
user account control (UAC)
Permissions that determine the level of access to a given file or folder for other network users.
What is share permissions?
Factor of authentication for tokens, access card
What you have?
Control strategy in which user access is determined by a set of rules established by an administrator.
rule-based access control
Open standard that allows the exchange of authentication and authorization information to provide SSO options over the Internet with federated systems.
Security Assertion Markup Language (SAML)
Employees are given only the privileges needed to perform their job responsibilities.
What is the least privilege?
Permissions are used to manage access to folders, files, or resources stored on Windows NT-based system.
New Technology File System (NTFS) permissions
Factor of biometrics
What you are?
Security strategy that sets a strict level of access to resources based on criteria set by a network administrator.
What is mandatory access control (MAC)?
Open-source project that provides single sign-on and allows websites to make authorization decisions on an individual level.
What is Shibboleth?
Examination, assessment, or evaluation of an account.
What is account audit?
Permissions given to a user to access a specific folder, file, or network drive.
explicit permissions
Attributes of location
What is "Somewhere you are"?
Access control method in which a user can be granted additional rights to data beyond what is allowed by the individual’s assigned access level.
discretionary access control (DAC)
An open standard for single sign-on, but it does not provide authentication services; instead, it issues access to third-party clients through an authorization server.
What is OAuth?
Contains not only the local user account names but also passwords stored in a hashed format.
Security Account Manager (SAM)
Permissions a user receives by default when a child of a parent object if created.
inherited permissions
Attributes of authentication based on the speed of keystrokes, common errors, etc.
What is "Something You Can Do"?
Access control system that uses attributes or characteristics assigned to a user and compares them to attributes or characteristics that are assigned to the data.
attribute-based access control (ABAC)
Open standard authentication protocol that supports single sign-on focuses on allowing data access by providing authentication services.
What is Open ID Connect?
Standard authentication protocol on all versions of Microsoft Server when using the Active Directory.
What is Kerberos?
Permissions a user receives through another object, such as a group.
implicit permissions