BSIT 220-T301 Week 5 Blog

 Welcome again!

It is Week 5 and I want to talk about a section of the book that went over AAA, or Authentication, Authorization, and Accounting. These components work together to ensure that only authorized users and devices have access to resources on the network as well as their activities are logged and audited appropriately. 


Authentication - verifies that the user or devices attempting to access the network is who or what they say they are. Some Authentication methods are:

    Username and Password - just your basic username and password
    Multi-factor authentication (MFA) - requires users to provide additional verification factors other than their password. SMS code, biometric scans, or hardware tokens. 
    Certificates - Digital certificates issued by a trusted Certificate Authority (CA) to authenticate devices or users .


Authorization - determines the actions and resources that authenticated users or devices are permitted to access after they have been successfully authenticated. 

    Role-Based Access Control (RBAC)Assigns permissions based on predefined roles within the organization

    Attribute-Based Access Control (ABAC): Uses attributes (such as user attributes, resource attributes, and environmental conditions) to determine access rights dynamically.


Accounting - involves tracking and logging user activities and resource usage for auditing, billing, and compliance purposes. It provides visibility into who accessed what resources, when they accessed them, and what actions they performed. Accounting helps businesses with:

    Audit and Compliance: maintaining records of user actions to demonstrate compliance with regulatory requirements

    Billing and Usage: tracking resource consumption for billing purposes. 

 AAA ensures that only authorized entities can access the network resources which will reduce the risk or unauthorized access and data breaches. 

Comments

Post a Comment

Popular posts from this blog

BSIT380-T302 Week 2 Blog

 This week’s readings really emphasized how foundational agreements and proactive analysis are to a strong cybersecurity posture. One key takeaway for me came from the deep dive into Service Level Agreements (SLAs) . SLAs are more than just technical checklists, they are legal and operational frameworks that define accountability, especially when it comes to security. In an environment where companies outsource critical infrastructure to third-party vendors, clearly defined SLAs are what ensure providers deliver not just uptime, but compliance with security protocols like data encryption, vulnerability patching timelines, and incident response commitments. From Chapter 4, I found the section on threat intelligence particularly compelling. The idea that cybersecurity is not just reactive but also predictive stood out. Gathering, analyzing, and applying threat intelligence helps organizations stay ahead of attackers. Whether it’s understanding threat actor motives or identifying in...
Read more

BSIT380-T302 Week 1 Blog

Hello and welcome to my first entry in what I hope becomes a valuable space for sharing insights, experiences, and lessons learned in the world of cybersecurity, system hardening, and network risk management. My name is Derek Talbott, and I am currently the Site IT Manager at Michelin in Junction City, Kansas. With over a decade of hands-on experience in IT, ranging from systems administration and Active Directory management to executing cybersecurity compliance rules across global infrastructures, I’ve learned just how critical strong security practices are in maintaining operational stability. Before transitioning into the civilian IT world, I served in the U.S. Army as a 15N Avionics Mechanic, 15F Aircraft Electrician, and 25B Information Technology Specialist. Those years taught me how to stay calm under pressure, lead by example, and treat every piece of technology as mission-critical, skills that continue to guide my approach to IT security today. I’m currently wrapping up my ...
Read more

BSIT 220-T301 Week 7 Blog

 Good Evening, Welcome back to my weekly blog where we talk about what is going on in this weeks course work. One thing that stuck out to me this week was SONET and SDH. Lets dig a little deeper on some similarities and differences between the two.  SONET - Synchronous Digital Hierarchy was standardized by the ANSI (American National Standards Institute) defines a hierarchy of interfaces and frame formats for transmitting multiple digital bit steams over optical fiber.  SDH - Synchronous Digital Hierarchy was standardized by the ITU-T (International Telecommunication Union - Telecommunication Standardization Sector). It is largely compatible with SONET but has some technical differences.  SONET uses Optical Carrier (OC) levels to designate different transmission rates. The basic unit is the Synchronous Transport Signal (STS) which is like the European STM-1 (Synchronous Transport Module Level 1) in SDH. SDH uses Synchronous Transport Module (STM) levels to designate ...
Read more