Security Engineering: Access Control and Data Protection
This course examined the two intertwined engineering disciplines of access control and data protection.
Before any access decision can be made, a system must know who is asking. This begins with identification, the process of presenting a claim to an identity. In the physical world this looks like presenting a driver's license; in an information system, it is the equivalent of typing a username at a login page. The entity making this claim — most often a human user, but potentially a system, service, or application — is called a principal.
Once a principal has identified itself, the relying party must verify that claim through authentication: confirming that the presented identity and credentials are valid, and that the principal truly is who or what it claims to be.
The key insight is that the KDC is only ever presented with full credentials once. Every subsequent access to an individual service is authorized through short-lived, service-specific tickets, minimizing the exposure of the principal's original credentials.
Sign in to read this course
A free account unlocks all 514 courses. 20 are readable without one.
What's inside
6 sections- 1 Table of Contents
- 2 Module 1: Understanding Identity
- 3 Module 2: Managing Access
- 4 Module 3: Protecting Data
- 5 Module 4: Data Security
- 6 Summary
More Cybersecurity Fundamentals courses
View all 9Data Security Champion: Data Encryption
Cryptography is a mature discipline built on ancient principles — substitution and transposition — now executed at massive scale and speed by modern computers. It underpins five essential...
Data Security Champion: Data Privacy Regulations
The significance of data privacy cannot be overstated. Every day, vast amounts of personal information are collected, processed, and stored by organizations, which makes that information...
Identity and Access Management: The Big Picture
Identity and access management brings together identification, authentication, authorization, and accounting (IAAA) into a coherent, centralized discipline for securing access to resource...
Network Security Basics
network · security · cybersecurity · fundamentals · networking · systems · attacks · remote · access · authentication · wireless · desktop · examining · exploits · layer · securing · asse...
Security Engineering: Asset Evaluation and Execution Plan
This course walked through the full lifecycle of a security engineer's role in securing a newly acquired IT estate — from understanding the job itself, through inventorying and evaluating...
Security Engineering: Securing Endpoints
Endpoints are the devices that run applications on a network, or that users operate every day to get their work done — desktops, laptops, servers, and, increasingly, containerized workloa...
Interested in this course?
Contact us to book it or get a custom training plan for your team.