Access Control and Identity Management Flashcards Preview

CompTIA Security+ SY0-501 > Access Control and Identity Management > Flashcards

Flashcards in Access Control and Identity Management Deck (24)
Loading flashcards...
1

What is EAL?

Evaluation Assurance Level
In combination with CC (Common Criteria)

2

When using hard drive encryption, why is automatic unlock not ideal?

Credentials are cached on the computer

3

What is an HSM?

Hardware Security Module

4

What is SCADA?

Supervisory Control and Data Aquisition

5

What is a TCP wrapper?

Intercepts requests to determine whether service is authorised to execute, should be used in conjunction with firewall

6

What is a TLS/SSL wrapper?

Intercepts requests to determine whether service is authorised to execute based on TLS/SSL session

7

What is AAA?

Authentication
Authorisation
Accounting (auditing)

8

What port does RADIUS use?

UDP
1812/1645 (Authentication)
1813/1646 (Accounting)

9

What port does TACACS+ use?

TCP
49

10

What is RADIUS?

Remote Authentication Dial-in User Service
Encrypts password credentials

11

What is TACACS?

Terminal Access Controller Access Control System
Encrypts entire packet

12

What is the KDC in Kerberos?

Key Distribution Center
Contains TGS (Ticket Granting Service)

13

What kind of encryption does Kerberos use?

Symmetrical Encryption
Same key used to encrypt and decrypt

14

What port does Kerberos use?

88

15

What is X.500?

A protocol used by LDAP
Encrypted or unencrypted authentication

16

What port is used by LDAP?

389

17

What port is used by secure LDAP?

636
uses TLS/SSL

18

What is SAML?

Security Association Markup Language
SSO

19

How does SAML concept work?

Principal authenticates with Identity Provider who passes credentials to service provider(s)

20

What is TOTP?

Time-based One Time Password

21

What is FRR vs FAR for authentication?

False Rejection Rate (Type 1)
False Acceptance Rate (Type 2)
Cross Error Rate - point at which both are equal

22

What is HOTP?

Hash-based One Time Password
based on events

23

What is PAP?

Password Authentication Protocol
Type of PPP

24

What is CHAP?

Challenge Handshake Authentication Protocol
Type of PPP