From the course: CompTIA CySA+ (CS0-002) Cert Prep: 3 Identity and Access Management
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Advanced authorization concepts
From the course: CompTIA CySA+ (CS0-002) Cert Prep: 3 Identity and Access Management
Advanced authorization concepts
- [Instructor] As we wrap up our discussion of authorization concepts, let's talk about a few advanced issues related to authorization in an access control system. We need to discuss the Implicit Deny Principle, rule-based authorization, role-based authorization, and time of day restrictions. The Implicit Deny Principle, otherwise known as Default Deny, is one of the foundational principles of access control systems. It says that anything that is not explicitly allowed should be denied. If a computer system doesn't have explicit instructions on how to handle a situation, it should default to denying access. Firewalls are a common example of the Default Deny Principle in action. When a firewall receives a connection request, it first consults the firewall rules to determine whether a rule explicitly addresses the situation. If the firewall finds a matching rule, it carries out the action specified by that rule. If the…
Contents
-
-
-
-
-
Authentication factors3m 30s
-
(Locked)
Multi-factor authentication2m 33s
-
(Locked)
Something you have3m 15s
-
(Locked)
Password authentication protocols2m 45s
-
(Locked)
Single sign-on (SSO) and federation2m 46s
-
(Locked)
RADIUS and TACACS3m 37s
-
(Locked)
Kerberos and LDAP5m 13s
-
(Locked)
SAML2m 38s
-
(Locked)
IDaaS3m 11s
-
(Locked)
Advanced authorization concepts6m 24s
-
-
-
-