Key Takeaways
- AAA stands for Authentication, Authorization, & Accounting.
- Authentication means confirming ID with proof.
- ID proofs can be things you know, are, have, do, or somewhere you are.
- Accounting means tracking data, usage, & network resources.
- Non-repudiation is having proof someone has taken an action.
What Is InfoSec AAA?
Security+ is about securing information and systems and ensuring their confidentiality, integrity, and availability. This is achieved mainly via controlling access, which is where AAA comes in.
This InfoSec acronym stands for authentication, authorization, and accounting. These are the core methods used to limit, provide, and monitor access to information and systems.
Authentication
Identification is a huge deal. It allows security pros to know who is or isn’t accessing things. We can confirm someone’s ID with proof, such as:
- something you know, such as a password
- something you are, such as biometric data
- something you have, such as an ID card
- something you do, such as voice recognition
- somewhere you are, such as your GPS location
Authorization
Once identification is established, we can decide what to do about access. Authorization is giving someone privileged access to certain data or areas of a building. Anyone without the correct authorization should be denied access.
Accounting
After someone properly authorized accesses something, there should be some way of accounting for what they do with that access. Here, accounting means tracking data, usage, & network resources. The goal is to achieve at least a base level of non-repudiation, which is when there is proof that someone has taken an action. Without that, no one can be held accountable.
Summary
The InfoSec AAA is how pros adhere to the CIA Triad discussed in issue 2. It comprises the standard best practices for limiting, granting, and monitoring access to all information and systems.
Next up is an introduction to hackers!