Identity and Access Management Terms and Concepts Flashcards
CompTIA CySA+ CS0-003 (V3) Flashcards
| Front | Back |
| Define biometrics in the context of authentication. | The use of physical characteristics, such as fingerprints, facial recognition, or iris scans, to verify identity. |
| Define privileged access management (PAM). | The process of managing and controlling access to critical systems and data by privileged users, including administrators and superusers. |
| Define single-factor authentication (SFA). | A security process that requires only one method of authentication, such as a password, to verify the identity of the user. |
| Describe the concept of ABAC | An access control method where access rights are granted based on attributes, such as user role, department, and security clearance level. |
| Explain the concept of role-based access control (RBAC). | A method of regulating access to computer or network resources based on the roles of individual users within an enterprise. |
| Explain the use of LDAP in identity management. | An open, vendor-neutral, industry standard for accessing and maintaining distributed directory information services over an IP network. |
| What are access control lists (ACLs)? | A set of rules that allow or deny access to network resources, based on user identities or other criteria. |
| What is a digital certificate? | An electronic document used to prove the ownership of a public key, typically issued by a certificate authority (CA). |
| What is a directory service? | A software system that stores, organizes, and provides access to information in a directory. |
| What is an identity provider (IdP)? | A system or service that creates, maintains, and manages identity information for principals and provides authentication services to relying applications within a federation or distributed network. |
| What is identity federation? | The practice of linking a single digital identity and its characteristics across multiple systems or organizations. |
| What is multi-factor authentication (MFA)? | A security system that requires more than one method of authentication from independent categories of credentials to verify the user's identity for a login or other transaction. |
| What is single sign-on (SSO)? | An authentication process that allows a user to access multiple applications with one set of login credentials. |
| What is the difference between authentication and authorization? | Authentication is the process of verifying the identity of a user, while authorization is the process of granting or denying access to resources based on the user's identity. |
| What is the principle of least privilege? | States that users should be granted the minimum levels of access – or permissions – needed to perform their job functions. |
About the Flashcards
Flashcards for the CompTIA CySA+ exam provide concise Q&A to reinforce core identity and access management principles. Students can quickly recall definitions of multi-factor versus single-factor authentication, biometrics, SSO, and identity federation while understanding how directory services and digital certificates support secure authentication workflows.
The deck also drills authorization models-RBAC, ABAC, ACLs-and key governance concepts like privileged access management and the principle of least privilege. By reviewing these terms alongside the differences between authentication and authorization, learners solidify the vocabulary and concepts needed to analyze exam scenarios and select the appropriate security control.
Topics covered in this flashcard deck:
- Authentication methods
- Authorization models
- Identity federation & SSO
- Privileged access management
- Directory services & LDAP
- Digital certificates