Business Justifications and Authorization Enforcement

Questions and Answers

What is the primary purpose of tying access to a structured business justification?

• To improve customer service efficiency
• To streamline the ticketing process
• To enforce authorization and limit data access (correct)
• To comply with industry regulations

Which of the following represents an anti-pattern in customer service access control?

• Requiring customer approval for data access
• Implementing access controls gradually over time
• Allowing access only to assigned tickets
• Giving customer service representatives access to all customer records (correct)

What is the recommended approach for customer service data access control?

• Require customer approval for all data access requests
• Block access by default, and only allow access with a verified business need (correct)
• Implement a single, comprehensive access control system upfront
• Allow unrestricted access to all customer data for efficiency

What is the advantage of using structured business justifications like ticket numbers?

They prevent unauthorized access by validating the business need (A)

How can access controls for customer service be improved over time?

By only allowing access to specific customers and data, with customer approval (C)

What does the text imply about the implementation of access controls?

It can be a gradual process, implemented over time (C)

What factor(s) determine(s) the appropriate usage of controls described in the text?

All of the above (D)

Which of the following is NOT a benefit of Multi-Party Authorization (MPA) mentioned in the text?

Reducing the cost of implementing security measures (C)

How does Multi-Party Authorization (MPA) discourage bad actors from attempting malicious changes?

By requiring compromise of at least one other person (C)

What culture does Multi-Party Authorization (MPA) aim to foster?

Culture of security and reliability (D)

Why is auditing past actions important in the context of incident response or postmortem analysis?

For incident response and postmortem analysis (B)

How does Multi-Party Authorization (MPA) affect the risk faced by employees and external attackers?

It discourages bad actors by increasing the cost of attack (B)

What is the primary purpose of granting temporary access to resources?

All of the above (D)

Which concept is mentioned as a reason for favoring 'sudo' or 'Run as Administrator' over operating as the root or Administrator accounts?

Reduced ambient authority (B)

What is the purpose of using a heavily monitored and restricted proxy machine (or bastion) when fine-grained controls for backend services are not available?

To provide a secure and controlled access point to backend services (B)

What is the purpose of combining temporary access with a request for multi-party authorization or a business justification?

To enhance security by requiring additional authorization controls (D)

Which of the following is NOT mentioned in the text as a reason for granting temporary access to resources?

To enable fine-grained controls for every action (C)

What is the significance of temporary access creating a logical point for auditing, according to the text?

It provides data about where temporary access occurs, allowing prioritization of reducing these requests (A)

What is the primary advantage of using small functional APIs for auditing?

They provide a granular series of actions that can be logged. (C)

Which of the following statements best describes a recommended approach to audit logging?

Consider how to justify and explain administrative actions to customers. (A)

In exceptional circumstances where existing audit capabilities are insufficient, what option is recommended?

Provide breakglass functionality for interactive sessions with powerful APIs. (A)

What is a potential consequence of providing breakglass functionality or direct credential access in exceptional circumstances?

Increased risk of insider threats due to lack of auditing. (B)

What is a key factor in the success of an auditing strategy, according to the text?

The culture associated with auditing within the organization. (B)

Which of the following is NOT mentioned as a recommended practice for auditing in the text?

Implementing strong encryption for audit logs. (C)

Which of the following is NOT a benefit of using structured data to associate with audit log events?

It allows for the use of free-text fields to record justifications (B)

What is the primary purpose of the "tripwires" mentioned in the text?

To provide early detection of anomalous actions (C)

Why does the passage suggest that teams may not notice a "couple of anomalous actions"?

They do not have the cross-team view to connect the dots (D)

What is the main benefit of associating audit log events with structured data, such as a bug number or customer case number?

It allows for programmatic checks to ensure observed data belongs to the correct customer (C)

Why does the passage suggest that organizations may need to work with other departments, such as Legal and HR, when implementing auditing mechanisms?

To ensure the auditing mechanisms are appropriate, properly scoped, and documented (B)