Business Justifications and Authorization Enforcement

Questions and Answers

What is the primary purpose of tying access to a structured business justification?

To improve customer service efficiency

To streamline the ticketing process

To enforce authorization and limit data access (correct)

To comply with industry regulations

Which of the following represents an anti-pattern in customer service access control?

Requiring customer approval for data access

Implementing access controls gradually over time

Allowing access only to assigned tickets

Giving customer service representatives access to all customer records (correct)

What is the recommended approach for customer service data access control?

Require customer approval for all data access requests

Block access by default, and only allow access with a verified business need (correct)

Implement a single, comprehensive access control system upfront

Allow unrestricted access to all customer data for efficiency

What is the advantage of using structured business justifications like ticket numbers?

They prevent unauthorized access by validating the business need

How can access controls for customer service be improved over time?

By only allowing access to specific customers and data, with customer approval

What does the text imply about the implementation of access controls?

It can be a gradual process, implemented over time

What factor(s) determine(s) the appropriate usage of controls described in the text?

All of the above

Which of the following is NOT a benefit of Multi-Party Authorization (MPA) mentioned in the text?

Reducing the cost of implementing security measures

How does Multi-Party Authorization (MPA) discourage bad actors from attempting malicious changes?

By requiring compromise of at least one other person

What culture does Multi-Party Authorization (MPA) aim to foster?

Culture of security and reliability

Why is auditing past actions important in the context of incident response or postmortem analysis?

For incident response and postmortem analysis

How does Multi-Party Authorization (MPA) affect the risk faced by employees and external attackers?

It discourages bad actors by increasing the cost of attack

What is the primary purpose of granting temporary access to resources?

All of the above

Which concept is mentioned as a reason for favoring 'sudo' or 'Run as Administrator' over operating as the root or Administrator accounts?

Reduced ambient authority

What is the purpose of using a heavily monitored and restricted proxy machine (or bastion) when fine-grained controls for backend services are not available?

To provide a secure and controlled access point to backend services

What is the purpose of combining temporary access with a request for multi-party authorization or a business justification?

To enhance security by requiring additional authorization controls

Which of the following is NOT mentioned in the text as a reason for granting temporary access to resources?

To enable fine-grained controls for every action

What is the significance of temporary access creating a logical point for auditing, according to the text?

It provides data about where temporary access occurs, allowing prioritization of reducing these requests

What is the primary advantage of using small functional APIs for auditing?

They provide a granular series of actions that can be logged.

Which of the following statements best describes a recommended approach to audit logging?

Consider how to justify and explain administrative actions to customers.

In exceptional circumstances where existing audit capabilities are insufficient, what option is recommended?

Provide breakglass functionality for interactive sessions with powerful APIs.

What is a potential consequence of providing breakglass functionality or direct credential access in exceptional circumstances?

Increased risk of insider threats due to lack of auditing.

What is a key factor in the success of an auditing strategy, according to the text?

The culture associated with auditing within the organization.

Which of the following is NOT mentioned as a recommended practice for auditing in the text?

Implementing strong encryption for audit logs.

Which of the following is NOT a benefit of using structured data to associate with audit log events?

It allows for the use of free-text fields to record justifications

What is the primary purpose of the "tripwires" mentioned in the text?

To provide early detection of anomalous actions

Why does the passage suggest that teams may not notice a "couple of anomalous actions"?

They do not have the cross-team view to connect the dots

What is the main benefit of associating audit log events with structured data, such as a bug number or customer case number?

It allows for programmatic checks to ensure observed data belongs to the correct customer

Why does the passage suggest that organizations may need to work with other departments, such as Legal and HR, when implementing auditing mechanisms?

To ensure the auditing mechanisms are appropriate, properly scoped, and documented