Some Things Happen?
This zone has a worldwide name.
Soft Zoning
This component is a way of defining allowed or denied permissions for a user or resource by attaching this component.
IAM Policies
This AWS resource provides an additional layer of security when implemented on the VPC side, where it acts like a logical firewall.
This cloud component focuses on firewalls, intrusions detection, encryption, etc.
Security Component
This is a security best practice that should follow when setting permissions in IAM policies.
Grant least privilege
This mode within IPSec has both the source and destination hosts performing cryptographic functions.
Transport mode
This section of an IAM policy determines what assets the IAM policy will use.
The Resource section
This reduces the need to sign onto multiple systems to gain access.
Single Sign-On (SSO)
This is when you should give out the IAM user root ID and password to an end user for logging into the system.
Never
This is what FISMA stands for.
Federal Information Security Management Act.
This federal program outlines and standardizes security assessments, authorization, and continuous monitoring for cloud products/services.
Federal Risk and Authorization Management Program (FedRAMP).
This is a type of AWS IAM policy that allows you to grant or deny permissions on AWS accounts or IAM users on specific objects within the Amazon S3 environments.
A bucket policy
The SAN security process restricts storage access between initiators and targets.
Zoning
This security mechanism secures access to storage resources by using an ordered list of permit and deny statements.
A storage Access Control List(ACL)
This networking component mimics the job of a firewall and also controls the outbound and inbound traffic.
A Security Group
This a zone defined by group of ports is called.
Hard Zone
This allows multiple organizations to be able to use the same data for identification purposes.
Federations
This AWS feature provides a constant monitoring service that assists in locating and solving malicious security breaches within your AWS infrastructure.
Amazon GuardDuty
This AWS resource is considered a federated tool that allows you to have your own single sign-on using identity providers such as Microsoft Activity Directory Federation Services(ADFS) or Google.
AWS Cognito
These are two security options used within Amazon S3 that can be used for preventing accidental delete action.
Versioning and Multi-Factor Authentication (MFA ) delete
This section of an IAM policy determines the behaviors and actions of what the policy will allow.
The Effects Section
This is defined as a framework/architecture which uses different protocols to provide integrity, confidentiality, and authentication of data over a TCP/IP network
IP Security(IPSec)
This access control method determines access rights based on the data comparing with the security properties of the system.
Mandatory Access Control (MAC)