Physical Access Control Systems vs Logical Access Control Systems
Physical - Manage entry to physical locations using methods such as RFID keycards or biometric scanners
Logical - Manage digital access to networks using passwords or MFA to verify user identity
Rule-Based Access Control
Used to manage user access to resources based on predefined rules and conditions
Mandatory Access Control
Enforces strict access policies based on predefined security classifications; uses labels for both users and resources (user with secret label can access anything labeled secret or below)
Discretionary Access Control
Allows resource owners full control of resource access, enabling them to grant or deny anyone access to their resources
Attribute-Based Access Control
Uses the attributes of users, resources, and the environment to determine access permissions dynamically
-
Governance28
-
Risk Management19
-
Compliance33
-
Resilient System Design45
-
Secure Architecture Design16
-
Security in Systems38
-
Access, Authentication, Authorization5
-
Hardware Security7
-
PKI Architecture39
-
Troubleshooting IAM15
-
Troubleshooting Network Infrastructure26
-
Cloud Security31
-
Specialized System Security9
-
Automated Security Operations7
-
Integrated Security and Automation16
-
Artificial Intelligence17
-
Vulnerabilities and Attacks26
-
Detection and Mitigation7
-
Threat Modeling Considerations5
-
Threat Modeling Frameworks15
-
Attack Surface Determination11
-
Indication Analysis19
-
REVIEW217
-
Cryptographic Types13
-
802.1x and Authentication Protocols9
