Intermediate

Security Engineering: Access Control and Data Protection

This course examined the two intertwined engineering disciplines of access control and data protection.

Before any access decision can be made, a system must know who is asking. This begins with identification, the process of presenting a claim to an identity. In the physical world this looks like presenting a driver's license; in an information system, it is the equivalent of typing a username at a login page. The entity making this claim — most often a human user, but potentially a system, service, or application — is called a principal.

Once a principal has identified itself, the relying party must verify that claim through authentication: confirming that the presented identity and credentials are valid, and that the principal truly is who or what it claims to be.

The key insight is that the KDC is only ever presented with full credentials once. Every subsequent access to an individual service is authorized through short-lived, service-specific tickets, minimizing the exposure of the principal's original credentials.

Sign in to read this course

A free account unlocks all 514 courses. 20 are readable without one.

What's inside

6 sections
  1. 1 Table of Contents
  2. 2 Module 1: Understanding Identity
  3. 3 Module 2: Managing Access
  4. 4 Module 3: Protecting Data
  5. 5 Module 4: Data Security
  6. 6 Summary

More Cybersecurity Fundamentals courses

View all 9

Interested in this course?

Contact us to book it or get a custom training plan for your team.