• Home

  • Documents

  • C HAPTER 4 A UTHENTICATION POLICY C YBER S ECURITY FOR E DUCATIONAL L EADERS : A G UIDE TO U...
11
CHAPTER 4 AUTHENTICATION POLICY CYBER SECURITY FOR EDUCATIONAL LEADERS: A GUIDE TO UNDERSTANDING AND IMPLEMENTING TECHNOLOGY POLICIES © Routledge Richard Phillips and Rayton R. Sianjina

C HAPTER 4 A UTHENTICATION POLICY C YBER S ECURITY FOR E DUCATIONAL L EADERS : A G UIDE TO U NDERSTANDING AND I MPLEMENTING T ECHNOLOGY P OLICIES © Routledge

Embed Size (px)

Citation preview

Page 1: C HAPTER 4 A UTHENTICATION POLICY C YBER S ECURITY FOR E DUCATIONAL L EADERS : A G UIDE TO U NDERSTANDING AND I MPLEMENTING T ECHNOLOGY P OLICIES © Routledge

CHAPTER 4 AUTHENTICATION POLICY

CYBER SECURITY FOR EDUCATIONAL LEADERS: A GUIDE TO UNDERSTANDING AND IMPLEMENTING TECHNOLOGY POLICIES

© Routledge Richard Phillips and Rayton R. Sianjina

Page 2: C HAPTER 4 A UTHENTICATION POLICY C YBER S ECURITY FOR E DUCATIONAL L EADERS : A G UIDE TO U NDERSTANDING AND I MPLEMENTING T ECHNOLOGY P OLICIES © Routledge

AUTHENTICATION POLICY

Authorization, identification, and authentication control ensures that only known users make use of information systems.

Information systems could be accessed illicitly and the security of those information systems would be compromised.

© Routledge

Page 3: C HAPTER 4 A UTHENTICATION POLICY C YBER S ECURITY FOR E DUCATIONAL L EADERS : A G UIDE TO U NDERSTANDING AND I MPLEMENTING T ECHNOLOGY P OLICIES © Routledge

AUTHENTICATION POLICY

Ensure that only authorized users have access to specific computers.

(Authorization, Identification, and Authentication Policy Template, 2011)

© Routledge

Page 4: C HAPTER 4 A UTHENTICATION POLICY C YBER S ECURITY FOR E DUCATIONAL L EADERS : A G UIDE TO U NDERSTANDING AND I MPLEMENTING T ECHNOLOGY P OLICIES © Routledge

AUTHENTICATION POLICY

Organization only allows access to certain users based on privileged information

Organization protected from unauthorized access by establishing requirements for the authorization and management of user accounts, providing user authentication, and implementing access controls

(Kobus 2007)

© Routledge

Page 5: C HAPTER 4 A UTHENTICATION POLICY C YBER S ECURITY FOR E DUCATIONAL L EADERS : A G UIDE TO U NDERSTANDING AND I MPLEMENTING T ECHNOLOGY P OLICIES © Routledge

AUTHENTICATION POLICY

Information will be managed and controlled through discretion access controls, identification and authentication, and audit trails.

(Kobus, 2007)

© Routledge

Page 6: C HAPTER 4 A UTHENTICATION POLICY C YBER S ECURITY FOR E DUCATIONAL L EADERS : A G UIDE TO U NDERSTANDING AND I MPLEMENTING T ECHNOLOGY P OLICIES © Routledge

AUTHENTICATION POLICY

Confidential information includes: a username a password an answer to a pre-arranged security question the confirmation of the owner’s email address.

(Authorization, Identification, and Authentication Policy Template, 2011)

© Routledge

Page 7: C HAPTER 4 A UTHENTICATION POLICY C YBER S ECURITY FOR E DUCATIONAL L EADERS : A G UIDE TO U NDERSTANDING AND I MPLEMENTING T ECHNOLOGY P OLICIES © Routledge

AUTHENTICATION POLICY

Employees and customers confidential information on file within their system.

Every effort is made to avoid outside parties gaining access or breaching security. Otherwise any known or unknown information exploited shall

be perceived as a security incident.

© Routledge

Page 8: C HAPTER 4 A UTHENTICATION POLICY C YBER S ECURITY FOR E DUCATIONAL L EADERS : A G UIDE TO U NDERSTANDING AND I MPLEMENTING T ECHNOLOGY P OLICIES © Routledge

AUTHENTICATION POLICY

Organizations handle the situation in accordance with established incident reporting guidelines and appropriate human resource policies and procedures.

(Kobus, 2007)

© Routledge

Page 9: C HAPTER 4 A UTHENTICATION POLICY C YBER S ECURITY FOR E DUCATIONAL L EADERS : A G UIDE TO U NDERSTANDING AND I MPLEMENTING T ECHNOLOGY P OLICIES © Routledge

AUTHENTICATION POLICY

In some cases the authentication causes a pop-up window to appear to make sure that the end-user is legitimate.

Can identify the user based on source IP (Internet protocol) address or identify the user according to credentials, by challenging the user to send the credentials.

If user is already authenticated in the network, the end-user’s browser will automatically send the required credentials to the system.

(Authorization, Identification, and Authentication Policy Template, 2007)

© Routledge

Page 10: C HAPTER 4 A UTHENTICATION POLICY C YBER S ECURITY FOR E DUCATIONAL L EADERS : A G UIDE TO U NDERSTANDING AND I MPLEMENTING T ECHNOLOGY P OLICIES © Routledge

AUTHENTICATION POLICY

The authentication is used when the user/domain information is obtained and validated.

A dedicated authentication device has three main benefits: performance, security, and high availability (User Identification and Authentication, 2007).

© Routledge

Page 11: C HAPTER 4 A UTHENTICATION POLICY C YBER S ECURITY FOR E DUCATIONAL L EADERS : A G UIDE TO U NDERSTANDING AND I MPLEMENTING T ECHNOLOGY P OLICIES © Routledge

CONCLUSION

Policy implementation should be based upon the use of management-approved security standards, procedures, and organizational best practices.

© Routledge


S PACE S CIENCE , E XPLORATION AND P OLICIES S ERIES

S PACE S CIENCE , E XPLORATION AND P OLICIES S ERIES

Documents
Ready to Engineer C onceiving- D esigning- I mplementing – O perating Edward Crawley

Ready to Engineer C onceiving- D esigning- I mplementing – O perating Edward Crawley

Documents
I MPLEMENTING R ESPONSIVE I NSTRUCTIONAL P RACTICES Institutionalizing & Sustaining Quality Instructional Practices Beth Harn (bharn@uoregon.edu) – University

I MPLEMENTING R ESPONSIVE I NSTRUCTIONAL P RACTICES Institutionalizing & Sustaining Quality Instructional Practices Beth Harn ([email protected]) – University

Documents
I NFLUENZA V ACCINATION P OLICIES AND P ROCEDURES Indiana State Department of Health November 2009

I NFLUENZA V ACCINATION P OLICIES AND P ROCEDURES Indiana State Department of Health November 2009

Documents
I MPLEMENTING A S UCCESSFUL C OMPLIANCE P ROGRAM Presented by Jeffrey S. Baird, Esq. © 2015 Brown & Fortunato, P.C

I MPLEMENTING A S UCCESSFUL C OMPLIANCE P ROGRAM Presented by Jeffrey S. Baird, Esq. © 2015 Brown & Fortunato, P.C

Documents
I NFORMATION S ECURITY : C ONFIDENTIALITY P OLICIES (C HAPTER 4) Dr. Shahriar Bijani Shahed University

I NFORMATION S ECURITY : C ONFIDENTIALITY P OLICIES (C HAPTER 4) Dr. Shahriar Bijani Shahed University

Documents
Photographic A uthentication through Untrusted terminals

Photographic A uthentication through Untrusted terminals

Documents
Treasury Strategies’ Technology Briefing mplementing your … · 2016. 8. 9. · requirements – strategic ... • Process Review & Re-engineering • Gap Analysis with Current

Treasury Strategies’ Technology Briefing mplementing your … · 2016. 8. 9. · requirements – strategic ... • Process Review & Re-engineering • Gap Analysis with Current

Documents
ersannel olicies orumn,, - California Digital Librarycdn.calisphere.org/data/28722/2k/bk0003z7g2k/files/bk0003z7g2k-FID1.pdf1. . .. . . . . . . .. .. . . .. . . . . the 2, 1965), Policies

ersannel olicies orumn,, - California Digital Librarycdn.calisphere.org/data/28722/2k/bk0003z7g2k/files/bk0003z7g2k-FID1.pdf1. . .. . . . . . . .. .. . . .. . . . . the 2, 1965), Policies

Documents
img0cf.b8cdn.com · 2020. 8. 18. · UTHENTICATION CERTIFICATE Whom These Presents Shall Come, Greetings ... CHED Certification re: Transcript of Records & Diploma issued to ROGIMAR

img0cf.b8cdn.com · 2020. 8. 18. · UTHENTICATION CERTIFICATE Whom These Presents Shall Come, Greetings ... CHED Certification re: Transcript of Records & Diploma issued to ROGIMAR

Documents
I mplementing the “Comprehensive Strategy for Prescribed Fire to Restore Longleaf Pine in the SE U.S.” Partnership Council Meeting

I mplementing the “Comprehensive Strategy for Prescribed Fire to Restore Longleaf Pine in the SE U.S.” Partnership Council Meeting

Documents
I MPLEMENTING QR C ODES IN THE T EEN A REA Marion Olea

I MPLEMENTING QR C ODES IN THE T EEN A REA Marion Olea

Documents
S ELECTING AND I MPLEMENTING AN A CADEMIC EHR Phyllis Murray, RN, MSN, MAEd Program Manager January 24, 2014

S ELECTING AND I MPLEMENTING AN A CADEMIC EHR Phyllis Murray, RN, MSN, MAEd Program Manager January 24, 2014

Documents
I MPLEMENTING P ROJECT B ASED L EARNING R ACHEL C OOK AND S TEPHANIE D ULMAGE

I MPLEMENTING P ROJECT B ASED L EARNING R ACHEL C OOK AND S TEPHANIE D ULMAGE

Documents
C HAPTER 13. ONT A UTHENTICATION B Y F REE RADIUS

C HAPTER 13. ONT A UTHENTICATION B Y F REE RADIUS

Documents
CDIO Standards C onceiving- D esigning- I mplementing - O perating Edward Crawley Peter Gray

CDIO Standards C onceiving- D esigning- I mplementing - O perating Edward Crawley Peter Gray

Documents
I MPLEMENTING B EST P RACTICES I NITIATIVE

I MPLEMENTING B EST P RACTICES I NITIATIVE

Documents
A UTHENTICATION, AUTHORISATION & ACCOUNTABILITY (AAA)

A UTHENTICATION, AUTHORISATION & ACCOUNTABILITY (AAA)

Documents
P HOTOGRAPHIC A UTHENTICATION THROUGH U NTRUSTED TERMINALS Authors: Trevor Pering, Murali Sundar John Light, Roy Want CS585 Feb 26,2009

P HOTOGRAPHIC A UTHENTICATION THROUGH U NTRUSTED TERMINALS Authors: Trevor Pering, Murali Sundar John Light, Roy Want CS585 Feb 26,2009

Documents
I MPLEMENTING S YNCHRONOUS M ODELS ON L OOSELY T IME T RIGGERED A RCHITECTURES Discussed by Alberto Puggelli

I MPLEMENTING S YNCHRONOUS M ODELS ON L OOSELY T IME T RIGGERED A RCHITECTURES Discussed by Alberto Puggelli

Documents
Manual de Oftalmologia Veterinária - Olicies Cunha (1)

Manual de Oftalmologia Veterinária - Olicies Cunha (1)

Documents
Token-based uthentication

Token-based uthentication

Software
img0cf.b8cdn.com · KAGAWARAN NG UGNAYANG PANLABAS MANILA, PHILIPPINES S.N. -0287788 UTHENTICATION CERTIFICATE ... FIL 102- Pagbasa at Pagsulat sa Iba't Ibang Disiplina HUM 101- Philippine

img0cf.b8cdn.com · KAGAWARAN NG UGNAYANG PANLABAS MANILA, PHILIPPINES S.N. -0287788 UTHENTICATION CERTIFICATE ... FIL 102- Pagbasa at Pagsulat sa Iba't Ibang Disiplina HUM 101- Philippine

Documents
Working to Create C omprehensive Tobacco-Related P olicies at H ospitals

Working to Create C omprehensive Tobacco-Related P olicies at H ospitals

Documents
IN REPRODUCTIVE HEALTH I MPLEMENTING B EST P RACTICES I MPLEMENTING B EST P RACTICES I NITIATIVE Margaret Usher-Patel, Suzanne Reier, Lou Compernolle WHO/RHR/USAID/IBP

IN REPRODUCTIVE HEALTH I MPLEMENTING B EST P RACTICES I MPLEMENTING B EST P RACTICES I NITIATIVE Margaret Usher-Patel, Suzanne Reier, Lou Compernolle WHO/RHR/USAID/IBP

Documents
L eaders in I mplementing F easible E nergy SYSTEMS

L eaders in I mplementing F easible E nergy SYSTEMS

Documents
DepEd Iloilo Citydepediloilocity.net/images/issuances/divisionmemorandum/2016/2016DM71.pdf · Led School Watching Hazard Mapping" reiterates the mplementing guidelines stipulated

DepEd Iloilo Citydepediloilocity.net/images/issuances/divisionmemorandum/2016/2016DM71.pdf · Led School Watching Hazard Mapping" reiterates the mplementing guidelines stipulated

Documents
Brain W ave B ased A uthentication

Brain W ave B ased A uthentication

Documents
Spring Securit y 2 - jugs.org · Spring Securit y A uthentication 13 LDAP-Anmeldung Benutzername User1 Abbrechen OK Kennwort **** Anwendung ffnet Authentication Manager Daten LDAP

Spring Securit y 2 - jugs.org · Spring Securit y A uthentication 13 LDAP-Anmeldung Benutzername User1 Abbrechen OK Kennwort **** Anwendung ffnet Authentication Manager Daten LDAP

Documents
UTHENTICATION CERTIFICATES - TeleTrusT · ISIS-MTT : Profile for Authentication Certificates Version 1.0 Contact Information ISIS-MTT Working Group of the TeleTrusT Deutschland e.V.:

UTHENTICATION CERTIFICATES - TeleTrusT · ISIS-MTT : Profile for Authentication Certificates Version 1.0 Contact Information ISIS-MTT Working Group of the TeleTrusT Deutschland e.V.:

Documents