CISSP IdentityCISSP Identity
and Access and Access
Management (IAM)Management
Complete Study Guide, Key Concepts & Exam Revision Notes
Study this set o nline at: https://www.cram.co m/flashcards/cissp-identity-and-access-
management-6322434
Authenti cati on T he process of veri f yi ng the i denti ty of the user.
H el p protect agai nst threats and vul nerabi l i ti es by reduci ng exposure to
Access Control s unauthori zed acti vi ti es and provi di ng access to i nf ormati on and systems to onl y
those who have been approved.
Requi res that users or process be granted access to onl y those resources necessary
Least pri vi l ege
to perf orm assi gned f uncti ons.
7 mai n categori es of access control D i recti ve, deterrent, preventi ve, detecti ve, correcti ve, compensati ng, and recovery.
1
, CISSP IdentityCISSP Identity
and Access and Access
Management (IAM)Management
Complete Study Guide, Key Concepts & Exam Revision Notes
Study this set o nline at: https://www.cram.co m/flashcards/cissp-identity-and-access-
management-6322434
T hree types of access control Admi ni strati ve, physi cal , and techni cal
F a l s e re j e c t i o n - f ai l ure to recogni ze a l egi ti mate user.
T ypes of f ai l ures i n bi ometri c i denti f i cati on systems F a u l t a c c e pt a nc e - erroneous rej ecti on, ei ther by conf usi ng one user wi th
another or by accepti ng an i mposter as a l egi ti mate user.
Authenti cati on by knowl edge - somethi ng a person knows, authenti cati on by
T hree f undamental types of authenti cati on possessi on - somethi ng a person has, and authenti cati on by characteri sti c -
somethi ng a person i s.
A si ngl e poi nt of f ai l ure and theref ore shoul d be supported by backup and
Potenti al vul nerabi l i ty of a Kerberos authenti cati on server
conti nui ty pl ans.
2
and Access and Access
Management (IAM)Management
Complete Study Guide, Key Concepts & Exam Revision Notes
Study this set o nline at: https://www.cram.co m/flashcards/cissp-identity-and-access-
management-6322434
Authenti cati on T he process of veri f yi ng the i denti ty of the user.
H el p protect agai nst threats and vul nerabi l i ti es by reduci ng exposure to
Access Control s unauthori zed acti vi ti es and provi di ng access to i nf ormati on and systems to onl y
those who have been approved.
Requi res that users or process be granted access to onl y those resources necessary
Least pri vi l ege
to perf orm assi gned f uncti ons.
7 mai n categori es of access control D i recti ve, deterrent, preventi ve, detecti ve, correcti ve, compensati ng, and recovery.
1
, CISSP IdentityCISSP Identity
and Access and Access
Management (IAM)Management
Complete Study Guide, Key Concepts & Exam Revision Notes
Study this set o nline at: https://www.cram.co m/flashcards/cissp-identity-and-access-
management-6322434
T hree types of access control Admi ni strati ve, physi cal , and techni cal
F a l s e re j e c t i o n - f ai l ure to recogni ze a l egi ti mate user.
T ypes of f ai l ures i n bi ometri c i denti f i cati on systems F a u l t a c c e pt a nc e - erroneous rej ecti on, ei ther by conf usi ng one user wi th
another or by accepti ng an i mposter as a l egi ti mate user.
Authenti cati on by knowl edge - somethi ng a person knows, authenti cati on by
T hree f undamental types of authenti cati on possessi on - somethi ng a person has, and authenti cati on by characteri sti c -
somethi ng a person i s.
A si ngl e poi nt of f ai l ure and theref ore shoul d be supported by backup and
Potenti al vul nerabi l i ty of a Kerberos authenti cati on server
conti nui ty pl ans.
2