Transcription of Sunflower CISSP
{{id}} {{{paragraph}}}
Example: bankruptcy
Sunflower CISSP
CISSP Summary Version Maarten de Frankrijker, CISSP . Revised by Christian Reina, CISSP . Revised by Steve Warnock __..-/ \-. ( \__/ ). /` ;;\.-`\. \ _.\;;/._ /. ( / \ ). '-\__/-'.-, , \\ (-. ). |\_ ||/.-`. \'.\_ |;`. '--,\|| , `;| _/|. // _/.'/. //_/,--'. ||'-`. Domain 1: Security and Risk Management Concepts (10). CIA. DAD - NEGATIVE -(disclosure alteration and destruction). Confidentiality - prevent unauthorized disclosure, need to know, and least privilege. Assurance that information is not disclosed to unauthorized programs, users, processes, encryption, logical and physical access control, Integrity - no unauthorized modifications, consistent data, protecting data or a resource from being altered in an unauthorized fashion Availability - reliable and timely, accessible, fault tolerance and recovery procedures, WHEN. NEEDED. IAAA - requirements for accountability Identification - user claims identity, used for user access control Authentication - testing of evidence of users identity Accountability - determine actions to an individual person Authorization - rights and permissions granted Privacy - level of confidentiality and privacy protection Risk (12).
three people out of the eight with the assigned work task of key escrow recovery agent to work together to pull a single key out of the key escrow database Least privilege - a system’s user should have the lowest level of rights and privileges necessary to perform their work and should only have them for the shortest time.
Loading..
Information
Domain:
Source:
Link to this page:
Please notify us if you found a problem with this document: