U3.3 Administration

Descrição

Masters Comp Sec Mapa Mental sobre U3.3 Administration, criado por Craig Parker em 13-11-2013.
Craig Parker
Mapa Mental por Craig Parker, atualizado more than 1 year ago
Craig Parker
Criado por Craig Parker aproximadamente 11 anos atrás
56
0

Resumo de Recurso

U3.3 Administration
  1. Creating, deleting, changing access rights for subjects and to objects
    1. Time consuming, complicated, error prone
      1. Can be simplified by aggregation of subjects and or objects
    2. Groups
      1. Creates an intermediate layer between the subjects and objects
        1. Simplifies admin by grouping subjects
        2. Subjects may belong to more than 1 group
          1. Objects may be accessible by more than 1 group
            1. Permissions for individuals within a group can still be altered without changing the group permissions
            2. Roles
              1. Permission to objects is assigned to the role that is created
                1. Subjects are then assigned a role
                  1. administrator role will allow you to perform most functions
                    1. Clerk role will have limited functions
                      1. Also a form of segregation of duties
              2. Groups Vs Roles
                1. group is a collection of users and is really a vehicle to simplify the administration of user's access rights.
                  1. role is a collection of access rights (or permissions) and hence pertains to what users are permitted to do. The concept of a role fits very well into a hierarchical organisation.

                  Semelhante

                  U2.1 Comp Sec: deals with prevention & detection of unauthorised actions by users of a comp system
                  Craig Parker
                  U3.2 Access Control Structures
                  Craig Parker
                  U3. Labels & Access Control
                  Craig Parker
                  U2.2 Fundamentals
                  Craig Parker
                  U3.1 Access Control
                  Craig Parker
                  U4. Security Models & Policy
                  Craig Parker
                  U4. Bell-LaPladula
                  Craig Parker
                  U4. Biba
                  Craig Parker
                  U4. Further Aspects of BLP
                  Craig Parker
                  U4. Harrison–Ruzzo–Ullman
                  Craig Parker
                  U4. Chinese Wall
                  Craig Parker