Dive into a comprehensive study guide for Domain 1 of the CISSP certification, focusing on Access Control. Explore key concepts such as Defense in Depth, AAA principles including non-repudiation and least privilege, Identity and Access Provisioning Lifecycle, and various access control schemes and protocols. Examine authentication methods, password attacks, and countermeasures. Learn about different types of access controls, including administrative, technical, physical, preventive, detective, corrective, and compensating controls. Gain insights into CHAP, RADIUS, Diameter, and TACACS/TACACS+ protocols. Understand the importance of labels, clearances, and rules-based access control in maintaining robust security measures.
Overview
Syllabus
Style?
DAD
CIA Examples
Related AAA concepts: Non-repudiation
Related AAA concepts: Least privilege - Do you really need to know that info?
Defense in depth Extra lines of defense
Access Control This gets fuzzy
Identity and Access Provisioning Lifecycle
Labels and Clearances
Access control schemes & protocols
CHAP
RADIUS
Diameter
TACACS/TACACS+
Procedures and Practices
Rules-based Access Control
Administrative (AKA: Directive)
Technical
Physical
Preventive
Detective
Corrective
Recovery
Deterrent
Compensating
Multiple type examples
Authentication Methods
Something you know
Password/Passphrase Attacks
Counters to password attacks
Something you have
