Authentication, Authorization, and Accounting (AAA Framework) (SEC+ 1.2) (DONE)

0.0(0)
studied byStudied by 0 people
learnLearn
examPractice Test
spaced repetitionSpaced Repetition
heart puzzleMatch
flashcardsFlashcards
Card Sorting

1/8

encourage image

There's no tags or description

Looks like no tags are added yet.

Study Analytics
Name
Mastery
Learn
Test
Matching
Spaced

No study sessions yet.

9 Terms

1
New cards

Identification

this is who you claim to be

2
New cards

Authentication

prove you are who you say you are (Ex. password etc)

3
New cards

Authorization

based on your identification and authentication, what access do you have

4
New cards

Accounting

resources, login time, data sent and received, logout time

5
New cards

How can you truly authenticate a device?

Put a digitally signed certificate on the device

6
New cards

How does a certificate authentication work?

  • an org has a trusted certificate authority (CA)

  • the org creates a certificate for a device and digitally sign it

  • the CA’s digital signature is now used to validate a certificate

7
New cards

How do you authorize a user or device after its been authenticated?

By putting an authorization model in the middle

8
New cards

What does a abstraction do?

it reduces complexity, and create a clear relationship between the user and the resource

9
New cards

Give an example of extraction

A shipping company creates a group that has access to multiple permissions. So anyone who needs access can just be added to the group, granting them access to multiple permissions.

Explore top notes

Explore top flashcards