Authorization creep is to access controls what scope creep is to software development. Which of the following is not true of aut

admin2013-12-19 81

问题 Authorization creep is to access controls what scope creep is to software development. Which of the following is not true of authorization creep?

选项 A、Users have a tendency to request additional permissions without asking for others to be taken away.
B、It is a violation of "least privilege."
C、It enforces the "need-to-know" concept.
D、It commonly occurs when users transfer to other departments or change positions.

答案C

解析 C正确。“知其所需”(need-to-know)原则基于的理念为：用户只应该授予为完成其工作职责所需要的资源的访问权限。如果没有明确地说明允许访问，那么应该就是禁止访问。与其把访问权给予所有人，然后再基于“知其所需”把特权剥夺，不如开始什么也不给，然后在“知其所需”的基础上增加特权。授权蔓延与这个概念相反，它是指访问权限随着时间的推移逐渐累积，尤其指对用户不需要知道的数据。
A不正确。因为本选项正确地描述了授权蔓延的原因，而问题问的是哪一项描述不正确。授权蔓延的出现往往是由于用户总是要求获得额外的访问权限而又不允许剥夺其他的访问权限。最后导致用户拥有比他实际所需多得多的访问权限。这种做法会带来严重的风险，因为太多用户对公司资产拥有太多的访问特权。
B不正确。因为授权蔓延违背了“最小特权”原则，而这个问题问的是哪一项描述不正确。最小特权原则规定用户应该只授予其完成工作任务所需的最小特权。对用户账户执行最小特权的原则应该是一个持续进行的工作，即每个用户的访问权限都应该进行审核，从而确保公司不会置身风险之中。
D不正确。因为这一项正确描述了授权蔓延的原因，而这个问题问的是哪一项不正确。当用户调至其他部门或更换了职位，他们往往会被分配更多的访问权限——远远多于他们完成工作所需的权限。这些权限通常是在他们原来的权限的基础上增加的，这样使得它们对资源的访问权太大会过于危险。

转载请注明原文地址:https://kaotiyun.com/show/jNhZ777K

CISSP认证

相关试题推荐

随机试题

最新回复(0)

Authorization creep is to access controls what scope creep is to software development. Which of the following is not true of aut

CISSP认证

Themassmediaisabigpartofourculture,yetitcanalsobeahelper,adviserandteachertoouryounggeneration.Themass

Thecountry’sinadequatementalhealthsystemgetsthemostattentionafterinstancesofmassviolencethatthenationhasseen

Backinthe1990s,awell-knowncomputerscientisthadanunusualwayofintroducinghimselftowomen.Accordingtoindustrylor

TimeintheAnimalWorldRhythmcontrolseverythinginNature.41Thesunprovidesabasictimerhythmforalllivingcr

APerpetualMotionMachineisafascinatingandlong-discussedtopicthatmoveswellbeyondthescopeofphysics.Inshort,Ape

Writeanessayof160-200wordsbasedonthefollowingdrawing.Inyouressay,youshould1)describethedrawingbriefly,

WhatQualitiesShouldaManagerHave?A.Studythechartcarefullyandwriteanessayof160-200words.B.Youressaysh

Inarareunanimousruling,theUSSupremeCourthasoverturnedthecorruptionconvictionofaformerVirginiagovernor,Robert

Gradeinflation—thegradualincreaseinaverageGPAs(grade-pointaverages)overthepastfewdecades—isoftenconsideredaprod

Theconceptofmanversusmachineisatleastasoldastheindustrialrevolution,butthisphenomenontendstobemostacutely

“曾门四弟子”指的是、、、。

公民基本道德规范，体现着我国现代社会生活中的道德精华。其中爱国守法，是要求公民应该有高尚的爱国主义精神，并要求自觉做到的有

一旦断电，剪贴板中的内容不复存在()

在影像解剖中，前纵隔线为

教师有权享受国家规定的各种待遇，包括医疗、住房、退休方面的待遇和优惠政策以及寒暑假期的带薪休假，这体现了教师享有()。

下列哪一项不符合腺泡中央型肺气肿

Yes,Isupposethingsmighthavebeendifferent,butwhoknows?Ihavemoretimetothinkthesedays,ofcourse,andit’sfunny

Thoughinnomeansrich,hewasbetteroffthanatanyotherperiodinhislife.

InterculturalLearningManyteachersmaywonder"whatIamactuallydoing"sometimes.Itdoesn’tseemenoughtoteachgramma

Authorization creep is to access controls what scope creep is to software development. Which of the following is not true of aut

CISSP认证

Themassmediaisabigpartofourculture,yetitcanalsobeahelper,adviserandteachertoouryounggeneration.Themass

Thecountry’sinadequatementalhealthsystemgetsthemostattentionafterinstancesofmassviolencethatthenationhasseen

Backinthe1990s,awell-knowncomputerscientisthadanunusualwayofintroducinghimselftowomen.Accordingtoindustrylor

TimeintheAnimalWorldRhythmcontrolseverythinginNature.41Thesunprovidesabasictimerhythmforalllivingcr

APerpetualMotionMachineisafascinatingandlong-discussedtopicthatmoveswellbeyondthescopeofphysics.Inshort,Ape

Writeanessayof160-200wordsbasedonthefollowingdrawing.Inyouressay,youshould1)describethedrawingbriefly,

WhatQualitiesShouldaManagerHave?A.Studythechartcarefullyandwriteanessayof160-200words.B.Youressaysh

Inarareunanimousruling,theUSSupremeCourthasoverturnedthecorruptionconvictionofaformerVirginiagovernor,Robert

Gradeinflation—thegradualincreaseinaverageGPAs(grade-pointaverages)overthepastfewdecades—isoftenconsideredaprod

Theconceptofmanversusmachineisatleastasoldastheindustrialrevolution,butthisphenomenontendstobemostacutely

“曾门四弟子”指的是________、________、________、________。

公民基本道德规范，体现着我国现代社会生活中的道德精华。其中爱国守法，是要求公民应该有高尚的爱国主义精神，并要求自觉做到的有

一旦断电，剪贴板中的内容不复存在()

在影像解剖中，前纵隔线为

教师有权享受国家规定的各种待遇，包括医疗、住房、退休方面的待遇和优惠政策以及寒暑假期的带薪休假，这体现了教师享有()。

下列哪一项不符合腺泡中央型肺气肿

Yes,Isupposethingsmighthavebeendifferent,butwhoknows?Ihavemoretimetothinkthesedays,ofcourse,andit’sfunny

Thoughinnomeansrich,hewasbetteroffthanatanyotherperiodinhislife.

InterculturalLearningManyteachersmaywonder"whatIamactuallydoing"sometimes.Itdoesn’tseemenoughtoteachgramma

“曾门四弟子”指的是、、、。