Access Control
Note for first Module. Try on. Ganbatte Kudasai. Hikaru is light. I am Hikaru. And Hikaru use Kent. Kendy mean is candy, but this case, it is katana. First! A. Access Control and Methodology Access Control Basic: Access Control: Bảo vệ khỏi những truy cập trái phép (unauthorize access) Two entities: Subject: active request access to object, like user, computer... Object: passive contain data and information, such as computer, data, file... Security Principle: CIA: Confidentiality - Integrity - Availablity 3 steps: Indentification, Authentication, Authorization -> resource Logical Access: tools for IAAA ( 3 steps + acountablity) 2 steps Authenication: use public infor, like username, user number, and enter private info, such as password, PIN Strong Authentication: two factor authentication Indentification compoments: unique, naming schema, nondescriptive user, not share.