What Is Network Access Management?
To prevent unauthorized access to information systems, there should be formal procedures to control the allocation of access rights to information systems and services. [1] Restrict users from The process of accessing information items or restricting the use of certain control functions is called access management.
- To prevent unauthorized computer access,
Access management access control
- Access control is an important measure to protect the information system resources. Appropriate access control can prevent unauthorized users from obtaining data intentionally or unintentionally. Means of access control include user identification code, password, login control, resource authorization (such as user profile, resource profile and control list), authorization verification, logging, and auditing.
- Access control refers to the means by which the system restricts the user's ability to use data resources to the identity of the user and its predefined policy group. It is usually used by system administrators to control user access to network resources such as servers, directories, and files.
- The important basis of system confidentiality, integrity, availability, and legal usability during access control is one of the key strategies for network security prevention and resource protection, and it is also the subject's different actions on the object itself or its resources based on certain control policies or permissions. Authorized access.
- The main purpose of access control is to restrict the access of the subject to the object, so as to ensure the effective use and management of data resources within the legal scope. In order to achieve the above purpose, access control needs to complete two tasks: identifying and confirming users who access the system, Decide what type of access the user can make to a system resource. [3]
Access management access attack
- An access attack is the ability of an unauthorized intruder to gain access to a device without an account or password. They enter or access the system by running hacking programs, scripts, or exploiting the application being attacked.
- There are five main types of access attacks: (1) password attacks; (2) trust exploitation; (3) port redirection; (4) man-in-the-middle attacks; and (5) buffer overflows. [4]