Upload File

logical access control

18

Upload: himanshu-gond

Post on 13-Nov-2014

38 views

Category:

Documents


6 download

Report

DESCRIPTION

Logical Access Control

TRANSCRIPT

Page 1: Logical access control
Page 2: Logical access control

Presentation Content

Access Control

Logical Access Control

Logical Access Control Component

Logical Access Control Examples.

Physical Access Control

Page 3: Logical access control

Purpose of Physical Access Control

Measure of Physical Access Control

Biometrics

Cross Error Rate/ Equal Error Rate

Page 4: Logical access control

Access Control

Access is the flow of information between subject and

object.

Subject: User, Program, Process or Device.

Object: Computer, Computer program, Database File.

Access Control are collection of mechanisms that work

together to protect the information assets and resources of

an organization from an unauthorized access.

Page 5: Logical access control

Access Control enable management to:

Specify which users can access the information and

uses the resources of an organization.

Specify what resources they can use.

Specify what operations they can perform.

Provide individual accountability.

Cont.….

Page 6: Logical access control

Access Control

Administrative Control

Logical Control

Physical Control

Page 7: Logical access control

Logical access control are the tools used to allow or

restricts subject access to objects on the basis:

Identification

Authentication

Authorization

Accountability

Page 8: Logical access control

Identification

A user accessing a computer system would present credentials or identification, such as a username, user ID.

Authentication

Checking the user’s credentials to be sure that they are authentic and not fabricated, usually using a password, pin, biometric etc.

Authorization

Granting permission to take the action on certain services or applications in order to perform their duties.

Accountability

Audit logs and monitoring to track subject activities with objects

Page 9: Logical access control

Logical Access Control

component

System Access

Network Architecture

Network Access

Encryption and

Protocols

Auditing

Page 10: Logical access control

Type of Control Preventive Detective Corrective Recovery Compensative

ACLs

Routers

Encryption

Audit Logs

IDS

Antivirus Software

Server images

Smart cards

Dial up-Call back

Data backup

Page 11: Logical access control

PHYSICAL ACCESS CONTROL

Physical access control is a matter of :-

- WHO

- WHERE &

- WHEN

Historically this was partially accomplished through keys and

locks.

In some cases, physical access control systems are integrated

with electronic ones

Page 12: Logical access control

PURPOSE OF PHYSICAL ACCESS CONTROLS

These entail controlling individual access into the: facility and different departments removing unnecessary CD-ROM drives, protecting the perimeter of the facility, monitoring for the intrusion environmental controls.

Page 13: Logical access control

MEASURES TO ACHIEVE PHYSICAL ACCESS CONTROLS

Physical access controls can be achieved by the following

means:

Humans (Guards etc)

Mechanical means (Lock and Keys)

Electronic access control

Biometrics

CCTV

Page 14: Logical access control
Page 15: Logical access control

BIOMETRICS

It is broken into two categories:

1. Physiological

2. Behaviorial

Two types of biometric errors:

3. Type 1 errors (False Rejection Rate)

4. Type 2 errors (False Acceptance Rate)

Page 16: Logical access control

CROSS ERROR RATE/EQUAL ERROR RATE

This rating is rated as a percentage and represents the

point at which the false rejection rate is equal to the

false acceptance rate.

This rating is the most important measurement when

determining the system’s accuracy.

Page 17: Logical access control
Page 18: Logical access control

Logical Operators and Control Statements

CIS14: Physical and Logical Access Control Convergence

AuthentX Logical Access Control Features Protecting Your ... Overview.pdf · The AuthentX suite of identity products: IDMS/CMS Cloud & SaaS Self Service Kiosk Physical Access Control

More on the link layer Logical Link Control (LLC) Medium Access Control (MAC)

Logical Access How to Order Guide

Managing PIV Card Lifecycle and Converging Physical & Logical Access Control

broshura Logical Access (Логический доступ).PDF

Convergence of Logical and Physical Access Control for LSEC IAM Conference 20091003 Leuven (English)

Transforming Logical Access Control for a Hospital Network

A Tag-Based, Logical Access-Control Framework for Personal File Sharing

programmble logical control

Local Area Network Lesson 7 NETS2150/2850. Lesson Outline Common LAN topologies Logical Link Control sublayer Medium Access Control sublayer ARP protocol

Logical Access Control - Identiv

Kolegov tkachenko-Non-Invasive Elimination of Logical Access Control Vulnerabilities in Web Applicationsph days-2015

Information Technology Security Plan Policies, Controls, and … · 2019-10-31 · The Identity Management and Access Control functions intends to ensure access to physical and logical

Usability of PIV Smartcards for Logical Access

RFID Maximum Security Physical & Logical Access Control System · 2013-04-01 · RFID Maximum Security Physical & Logical Access Control System A system built to satisfy even the

Part 2: Logical Link Control

Part 11: Wireless LAN Medium Access Control (MAC) and ... · logical link control * formerly ieee std 802.1a. data link layer physical 802.2 logical link control 802 overview & architecture*

Context Aware Access Control · Chapter 5 analyzes the need for context aware access control and how to enforce logical access control in physical objects. Chapter 6 and 7 present

Guide to Attribute Based Access Control (ABAC) Definition ... · This document provides Federal agencies with a definition of attribute based access control (ABAC). ABAC is a logical

ALUA [Asymmetric Logical Unit Access]

Dr. L. Christofi1 Local & Metropolitan Area Networks ACOE322 Lecture 2 Medium Access Control and Logical Link Control

Features - XTec | AuthentX IDMS CMS.pdf · The AuthentX suite of identity products: IDMS/CMS Cloud & SaaS Self Service Kiosk Physical Access Control Solutions Logical Access Control

Network-Based Access Control Systems Access... · Installation Manual, Network-Based Access Control Systems Based Access Control Systems. Access Control . harness. Access Control

Hid Fargo Printers Physical & Logical Access Controls

About Booz Allen Access Control · 04.148.09 G • Logical access: Improving logical access control systems is another daunting challenge facing agency senior management as PIV cards

CorporateInformationSecurity Corporate Information Security User Identification & Logical Access Control

Access Control Models · A logical access control methodology where authorisation to perform a set of operations is determined by evaluating attributes associated with the subject,

Attribute-Based Access Control · approach is often referred to as attribute-based access control (ABAC). ABAC: A FLEXIBLE ACCESS CONTROL MODEL ABAC is a logical AC model that controls

Logical Method for Reasoning about Access Control and Data Flow Control Models Luigi Logrippo Laboratoire de recherche en sécurité informatique Université

Control Structures – Selection Chapter 4 2 Chapter Topics Control Structures Relational Operators Logical (Boolean) Operators Logical Expressions

AuthentX Physical Access Control Features Overview.pdf · The AuthentX suite of identity products: IDMS/CMS Cloud & SaaS Self Service Kiosk Physical Access Control Solutions Logical

Part 3: Carrier Sense Multiple Access with Collision ... · llc (logical link control) or mac—media access control pma higher layers mdi = medium dependent interface gmii = gigabit

A Logical Approach to Access Control, Security, and Trust