Access control                             ITT3                      2012 Autumn Morten Bo Nielsen – mon@eal.dk     1/11
Getting access    Apt-get install UserAndPasswdHandler                        and were done for Today                     ...
Once we know who you are....                      Confidentiality                           Integrity                     ...
Tripple A                     Authentication                      Authorization                        Accounting Morten B...
Something you know: RADIUSWe are doing RADIUS (or something similar) onthe EAL wireless.●   What is RADIUS?●   How does it...
Authentication        The big       question:  How do you tell   you are you?And you have many “identities”               ...
Authentication●   1-, 2-, 3-factor    authentication    ●   Are, have, know.●   Examples, please.                         ...
AuthorizationAllow or deny access●   Equipment●   Location●   Data●   Services●   Etc.    Morten Bo Nielsen – mon@eal.dk  ...
Accounting                                  ●   Resource usage                                  ●   Logs                  ...
Exercise: Kerberos                                                          ●   How does it work?                         ...
Credits & licences●    Content by Morten Bo Nielsen     License: Creative Commons Attribution-NonCommercial-ShareAlike 3.0...
Upcoming SlideShare
Loading in …5
×

Itt3 its acl

234 views

Published on

Published in: Education, Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
234
On SlideShare
0
From Embeds
0
Number of Embeds
2
Actions
Shares
0
Downloads
2
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Itt3 its acl

  1. 1. Access control ITT3 2012 Autumn Morten Bo Nielsen – mon@eal.dk 1/11
  2. 2. Getting access Apt-get install UserAndPasswdHandler and were done for Today go home Morten Bo Nielsen – mon@eal.dk 2/11
  3. 3. Once we know who you are.... Confidentiality Integrity Availability Morten Bo Nielsen – mon@eal.dk 3/11
  4. 4. Tripple A Authentication Authorization Accounting Morten Bo Nielsen – mon@eal.dk 4/11
  5. 5. Something you know: RADIUSWe are doing RADIUS (or something similar) onthe EAL wireless.● What is RADIUS?● How does it relate to tripple A?● Do a rough diagram of connecting wirelessly to the internet. Morten Bo Nielsen – mon@eal.dk 5/11
  6. 6. Authentication The big question: How do you tell you are you?And you have many “identities” Yes, this is Dr. Who! (from the remake) Morten Bo Nielsen – mon@eal.dk 6/11
  7. 7. Authentication● 1-, 2-, 3-factor authentication ● Are, have, know.● Examples, please. RSA got hackedfor their token seeds. Morten Bo Nielsen – mon@eal.dk 7/11
  8. 8. AuthorizationAllow or deny access● Equipment● Location● Data● Services● Etc. Morten Bo Nielsen – mon@eal.dk 8/11
  9. 9. Accounting ● Resource usage ● Logs ● Forensics ● After-the-fact ● Investigations Morten Bo Nielsen – mon@eal.dk 9/11
  10. 10. Exercise: Kerberos ● How does it work? ● Describe using Tripple A ● Do a rough diagramCerberus guarding the entrance to the third circleof hell (Gluttony) according to the Divine comedy. (and that is completely unrelated, but cool anyway) Morten Bo Nielsen – mon@eal.dk 10/11
  11. 11. Credits & licences● Content by Morten Bo Nielsen License: Creative Commons Attribution-NonCommercial-ShareAlike 3.0 Unported License. (http://creativecommons.org/licenses/by-nc-sa/3.0/)● EAL logo might be an issue, please check before you use it● Images: Green checkmark, Bean counter, Dr Who, Dante, Password, Iris, RSA token, Access denied. Morten Bo Nielsen – mon@eal.dk 11/11

×