[Cisspstudy] the question about system accountability
jack wang
windjie at gmail.com
Fri Nov 6 22:09:06 EST 2009
the quiz in cccure.org say:
Which of the following is not needed for System Accountability?
auditing.
authentication.
›authorization.
identification.
the explaination is:*Authorization* is not a requirement of accountability.
One reason for accountability is security violations. If an individual is
accessing or attempting to access information or areas that they are not
authorized you would be able to trace them.
what's the mean? I thank authorization is need for accountability
who can explain them?
Much appreciate!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://cccure.org/pipermail/cisspstudy_cccure.org/attachments/20091107/c080fb2a/attachment.html>
More information about the cisspstudy
mailing list