Building Blocks Technologies

Training Services
Course Develsopment Services
Training Instruction Services Consulting Services

Services

Technology Training: Security: Access Control Systems & Methodology

Course Objectives:

Upon completion of this course the student will be able to:

  • Define access control concepts
  • Describe the methodologies employed by access control
  • Describe the implementation process for access
  • Describe access control techniques, detective and corrective measures
  • Explain potential computing system risk's, vulnerabilities and exposures

Course Type:

The course is taught in class with an instructor.

Prerequisite:

A detailed understanding of IP networking, data communication and firewall basics are strongly recommended. The Network: Foundations, Security Series: Level I are also recommended.

Audience:

Individuals that need to understand the mechanisms that exercise restraining influences over the behaviour, use and content of a system, specifically Systems Engineers, Network Administrators, Network Consultants, Technical Architects, and Security Planners.

Course Description:

This course introduces the student to access control systems and methodology. Access control is the basis of security and security concept's. Through a series of discussions the student will gain knowledge of these concepts.

Course Length:

1 Day

Course Outline

Introduction to Access Controls

  • Access Control Purpose
  • Access Control Definitions
  • Access
  • Authorization
  • Methods
  • Paths
  • Control Software
  • Privilege
  • Rules
  • Profiles
  • Domains

Access Control Techniques

  • Discretionary Access Control
  • Mandatory Access Control
  • Lattice-based Access Control
  • Rule-based Access Control
  • Role-based Access Control
  • Access Control Lists

Access Control Administration

  • Account Administration
  • Account, Log and Journal Administration
  • Access Rights and Permissions

Access Control Models

  • Bell La-Padula
  • Biba
  • Clark-Wilson
  • Non-Interference Model
  • State Machine
  • Matrix Model

Identification and Authentication Techniques

  • Knowledge Based
  • Characteristic Based
  • Tokens
  • Tickets
  • Single Sign-on
  • Cryptographic

Access Control Methodologies and Implementation

  • Centralized Access Controls
  • Remote Authentication
  • RADIUS
  • TACACS
  • DIAMETER
  • Decentralised Access Controls
  • Hybrid Administration

Methods of Attack

  • Brute Force
  • Denial of Service
  • Dictionary
  • Spoofing
  • Man-in-Middle
  • Spamming
  • Sniffers
  • Crackers

Monitoring Techniques

  • Intrusion Detection Systems
  • Network-based IDS
  • Host-based IDS
  • Application Based IDS