Systems Security Certified Practitioner (SSCP) - Exam Prep Questions With Answers

Systems Security Certified Practitioner (SSCP) - Exam Prep Questions With Answers Access Control Object - ANS A passive entity that typically receives or contains some form of data. Access Control Subject - ANS An active entity and can be any user, program, or process that requests permission to cause data to flow from an access control object to the access control subject or between access control objects. Asynchronous Password Token - ANS A one-time password is generated without the use of a clock, either from a one-time pad or cryptographic algorithm. Authorization - ANS Determines whether a user is permitted to access a particular resource. Connected Tokens - ANS Must be physically connected to the computer to which the user is authenticating. Contactless Tokens - ANS Form a logical connection to the client computer but do not require a physical connection. Disconnected Tokens - ANS Have neither a physical nor logical connection to the client computer. Entitlement - ANS A set of rules, defined by the resource owner, for managing access to a resource (asset, service, or entity) and for what purpose. Identity Management - ANS The task of controlling information about users on computers. Proof of Identity - ANS Verify people's identities before the enterprise issues them accounts and credentials. Kerberos - ANS A popular network authentication protocol for indirect (third-party) authentication services. Lightweight Directory Access Protocol (LDAP) - ANS A client/server-based directory query protocol loosely based on X.500, commonly used to manage user information. LDAP is a front end and not used to manage or synchronize data per se as opposed to DNS. Single Sign-On (SSO) - ANS Designed to provide strong authentication using secret-key cryptography, allowing a single identity to be shared across multiple applications. Static Password Token - ANS The device contains a password that is physically hidden (not visible to the possessor) but that is transmitted for each authentication.