O'Reilly logo

CISSP in 21 Days - Second Edition by M. L. Srinivasan

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Access management concepts, methodologies, and techniques

The access management layer consist of access control mechanisms, such as authentication and authorization. This layer also consists of accountability mechanisms such as logging and monitoring activities.

Basic concepts

One of the primary concepts in access control is that of subject and object.

A subject maybe a person, process, or technology component that either seeks access or controls the access. A physical entry to a data center and login to a system are examples of access. Hence, an employee trying to access their business e-mail account is a subject; similarly, the system that verifies the credentials, such as the user name and password, is also termed as subject.

An object can be a ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required