Knowee
Questions
Features
Study Tools

A financial institution needs to implement a system that enforces the principle of "least privilege" by controlling access to specific resources. Which IAAA principle is most relevant?1.0 MarksAccountabilityAuthorizationSingle Sign-On (SSOAuthenticationIdentification

Question

A financial institution needs to implement a system that enforces the principle of "least privilege" by controlling access to specific resources. Which IAAA principle is most relevant?1.0 MarksAccountabilityAuthorizationSingle Sign-On (SSOAuthenticationIdentification

🧐 Not the exact question you are looking for?Go ask a question

Solution

The most relevant IAAA (Identification, Authentication, Authorization, Accountability) principle for a financial institution that needs to implement a system enforcing the "least privilege" by controlling access to specific resources is Authorization.

Here's why:

  1. Identification: This is the process of a user stating who they are. It's the first step in accessing a system but doesn't control what resources the user can access.

  2. Authentication: This is the process of verifying the user is who they say they are. Like identification, it doesn't control what resources the user can access.

  3. Authorization: This is the process of giving a user permission to access specific resources or perform specific actions. This principle directly relates to enforcing "least privilege" as it controls what resources a user can access.

  4. Accountability: This is the process of tracking user activities. While it's important for security, it doesn't control what resources a user can access.

  5. Single Sign-On (SSO): This is a property of access control of multiple related, yet independent, software systems. It doesn't directly control what resources a user can access.

So, the answer is Authorization.

This problem has been solved

Similar Questions

A research institution wants to ensure that only authorized personnel can perform certain critical tasks within their systems. What IAAA principle would address this concern?1.0 Marks AuthorizationTwo-Factor AuthenticationIdentificationRole-Based Access Control (RBAC)Accountability

A healthcare organization is concerned about protecting patient data from unauthorized access. What IAAA principle would be essential for this purpose?1.0 MarksRole-Based Access Control (RBAC)Single Sign-On (SSO)IdentificationAuthorizationAuthentication

A government agency requires a mechanism that verifies the identity of users before granting them access to classified information. What IAAA component should they focus on?1.0 MarksIdentificationAuthenticationAccess Control ListsAuthorization Two-Factor Authentication

A multinational corporation wants to enhance security by ensuring that employees' actions and access to sensitive data are traceable. What IAAA principle would help achieve this goal?1.0 MarksAccountabilityAuthorizationBiometric AuthenticationTwo-Factor AuthenticationIdentification

An e-commerce company wants to implement a method of validating customers' identities when they log in to their accounts. Which IAAA component is most relevant?1.0 MarksSingle Sign-On (SSO)AuthenticationMulti-factor Authentication (MFA)IdentificationAuthorization

1/3

Upgrade your grade with Knowee

Get personalized homework help. Review tough concepts in more detail, or go deeper into your topic by exploring other relevant questions.