Game Preview

Asset Control

  • Game Code: 53847
  •  English    21     Public
    Your job is to defend the data.
  •   Study   Slideshow
  • What are objects?
    assets
  •  15
  • What is access control?
    Access control is the sum total of security. It is who can gain access and what they can do when they get there.
  •  15
  • What are subjects?
    people
  •  15
  • What are the three key components to access control?
    tamper proof, always invoked, verifiable
  •  15
  • What is the purpose of layered defense?
    to avoid a single point of failure
  •  15
  • Access control must have these 2 items.
    rules and logs
  •  15
  • A lock on a door is an example of this.
    a reference monitor
  •  15
  • Assets can fall into these two categories.
    tangible and intangible
  •  15
  • Reputation is an example of this.
    intangible asset
  •  15
  • Money is an example of this.
    tangible asset
  •  15
  • Who determines access rules?
    The owner of the asset.
  •  15
  • These are 3 components tied to Privilege Levels.
    identify, authenticate, authorize subjects
  •  15
  • These are passive. They respond to a request and have a classification level.
    Objects
  •  15
  • These are active. They request service and initiate activity. They have clearance levels.
    Subjects
  •  15
  • Printer, file, application, process, server, memory, building and network are all examples of these.
    objects
  •  15
  • Physical access and logical access are examples of this.
    layered defense
  •  15
    • Your experience on this site will be improved by allowing cookies.