tailieunhanh - Identification

Identification is a necessary component of Authentication, Authorization and Accounting. The idea is that each entity has a unique ID. IDs should NEVER be shared IDs are a foundational component of AAA | Security+ All-In-One Edition Chapter 9 – Authentication and Remote Access Brian E. Brzezicki AAA AAA (n/b) Authentication, Authorization and Accounting Identification (242) Identification is a necessary component of Authentication, Authorization and Accounting. The idea is that each entity has a unique ID. IDs should NEVER be shared IDs are a foundational component of AAA Authentication (243) The idea of verifying an entities identity. We already talked about Authentication, but let’s recap the 3 types Something you Something you Something you Multi-factor Authentication = Strong Authentication Mutual Authentication (246) Normally we authenticate to a server. Mutual Authentication requires both parties to authenticate to each other! Why would we use this? Online Banking Authentication Servers Web Servers / Avoid Phishing attacks! The Golden Ring of Network Authentication Single Sign On (n/b) In a large environment with different accounts and passwords it get hard to manage. Multiple users to create/disable Passwords to remember, leads to passwords security issues Reduces user frustration and IT frustration! This is the “golden ring of network authentication” Authorization (247) Once identified, Authorization tells a system what you have access to. Some common Authorization types we previously talked about are Access Control Lists Capability Tables Access Control Matrices Accounting Being able to measure usage, also related is Auditing Auditing (n/b) Auditing is the concept of reviewing access attempts. Auditing SHOULD be carried out manually or through software. Audit Logs should have Identity of user Identify of resource Date/Time Success or Failure (more) Auditing Look for People trying and failing to access things People accessing things that they have access to but maybe shouldn’t Clipping Level (n/b) Clipping Level Clipping Level – a threshold for audit events, beneath which we do not log attempts. Used to avoid overwhelming . | Security+ All-In-One Edition Chapter 9 – Authentication and Remote Access Brian E. Brzezicki AAA AAA (n/b) Authentication, Authorization and Accounting Identification (242) Identification is a necessary component of Authentication, Authorization and Accounting. The idea is that each entity has a unique ID. IDs should NEVER be shared IDs are a foundational component of AAA Authentication (243) The idea of verifying an entities identity. We already talked about Authentication, but let’s recap the 3 types Something you Something you Something you Multi-factor Authentication = Strong Authentication Mutual Authentication (246) Normally we authenticate to a server. Mutual Authentication requires both parties to authenticate to each other! Why would we use this? Online Banking Authentication Servers Web Servers / Avoid Phishing attacks! The Golden Ring of Network Authentication Single Sign On (n/b) In a large environment with different accounts and passwords it