國立虎尾科技大學 |

Identity Attack Vectors = Implementing an Effective Identity and Access Management Solution /

Record Type:	Language materials, printed : Monograph/item
Title/Author:	Identity Attack Vectors/ by Morey J. Haber, Darran Rolls.
Reminder of title:	Implementing an Effective Identity and Access Management Solution /
Author:	Haber, Morey J.
other author:	Rolls, Darran.
Description:	XXIII, 196 p. 33 illus.online resource. :
Contained By:	Springer Nature eBook
Subject:	Data protection. -
Online resource:	https://doi.org/10.1007/978-1-4842-5165-2
ISBN:	9781484251652

Identity Attack Vectors = Implementing an Effective Identity and Access Management Solution /
Haber, Morey J.

Identity Attack VectorsImplementing an Effective Identity and Access Management Solution /[electronic resource] :by Morey J. Haber, Darran Rolls. - 1st ed. 2020. - XXIII, 196 p. 33 illus.online resource.

Chapter 1: The Three Pillars of Cybersecurity -- Chapter 2: A Nuance on Lateral Movement -- Chapter 3: The Five A’s of Enterprise IAM -- Chapter 4: Understanding Enterprise Identity -- Chapter 5: BOTS -- Chapter 6: Identity Governance Defined -- Chapter 7: The Identity Governance Process -- Chapter 8: Meeting Regulatory Compliance Mandates -- Chapter 9: Indicators of Compromise -- Chapter 10: Identity Attack Vectors -- Chapter 11: Identity Management Controls in the Cyber Kill Chain -- Chapter 12: Identity Management Program Planning -- Chapter 13: Privileged Access Management -- Chapter 14: Just-In-Time Access Management -- Chapter 15: Identity Obfuscation -- Chapter 16: System for Cross-domain Identity Management (SCIM) -- Chapter 17: Remote Access -- Chapter 18: Identity-Based Threat Response -- Chapter 19: Biometric Risks Related to Identities -- Chapter 20: Blockchain and Identity Management -- Chapter 21: Conclusion.

Discover how poor identity and privilege management can be leveraged to compromise accounts and credentials within an organization. Learn how role-based identity assignments, entitlements, and auditing strategies can be implemented to mitigate the threats leveraging accounts and identities and how to manage compliance for regulatory initiatives. As a solution, Identity Access Management (IAM) has emerged as the cornerstone of enterprise security. Managing accounts, credentials, roles, certification, and attestation reporting for all resources is now a security and compliance mandate. When identity theft and poor identity management is leveraged as an attack vector, risk and vulnerabilities increase exponentially. As cyber attacks continue to increase in volume and sophistication, it is not a matter of if, but when, your organization will have an incident. Threat actors target accounts, users, and their associated identities, to conduct their malicious activities through privileged attacks and asset vulnerabilities. Identity Attack Vectors details the risks associated with poor identity management practices, the techniques that threat actors and insiders leverage, and the operational best practices that organizations should adopt to protect against identity theft and account compromises, and to develop an effective identity governance program. You will: Understand the concepts behind an identity and how their associated credentials and accounts can be leveraged as an attack vector Implement an effective Identity Access Management (IAM) program to manage identities and roles, and provide certification for regulatory compliance See where identity management controls play a part of the cyber kill chain and how privileges should be managed as a potential weak link Build upon industry standards to integrate key identity management technologies into a corporate ecosystem Plan for a successful deployment, implementation scope, measurable risk reduction, auditing and discovery, regulatory reporting, and oversight based on real-world strategies to prevent identity attack vectors.

ISBN: 9781484251652

Standard No.: 10.1007/978-1-4842-5165-2doiSubjects--Topical Terms:

557764
Data protection.

LC Class. No.: QA76.9.A25

Dewey Class. No.: 005.8

Identity Attack Vectors = Implementing an Effective Identity and Access Management Solution /
LDR:04389nam a22003855i 4500 001 1018324
003 DE-He213
005 20200701114505.0
007 cr nn 008mamaa
008 210318s2020 xxu| s |||| 0|eng d
020 $a 9781484251652 $9 978-1-4842-5165-2
024 7 $a 10.1007/978-1-4842-5165-2 $2 doi
035 $a 978-1-4842-5165-2
050 4 $a QA76.9.A25
072 7 $a UR $2 bicssc
072 7 $a COM053000 $2 bisacsh
072 7 $a UR $2 thema
082 0 4 $a 005.8 $2 23
100 1 $a Haber, Morey J. $4 aut $4 http://id.loc.gov/vocabulary/relators/aut $3 1206686
245 1 0 $a Identity Attack Vectors $h [electronic resource] : $b Implementing an Effective Identity and Access Management Solution / $c by Morey J. Haber, Darran Rolls.
250 $a 1st ed. 2020.
264 1 $a Berkeley, CA : $b Apress : $b Imprint: Apress, $c 2020.
300 $a XXIII, 196 p. 33 illus. $b online resource.
336 $a text $b txt $2 rdacontent
337 $a computer $b c $2 rdamedia
338 $a online resource $b cr $2 rdacarrier
347 $a text file $b PDF $2 rda
505 0 $a Chapter 1: The Three Pillars of Cybersecurity -- Chapter 2: A Nuance on Lateral Movement -- Chapter 3: The Five A’s of Enterprise IAM -- Chapter 4: Understanding Enterprise Identity -- Chapter 5: BOTS -- Chapter 6: Identity Governance Defined -- Chapter 7: The Identity Governance Process -- Chapter 8: Meeting Regulatory Compliance Mandates -- Chapter 9: Indicators of Compromise -- Chapter 10: Identity Attack Vectors -- Chapter 11: Identity Management Controls in the Cyber Kill Chain -- Chapter 12: Identity Management Program Planning -- Chapter 13: Privileged Access Management -- Chapter 14: Just-In-Time Access Management -- Chapter 15: Identity Obfuscation -- Chapter 16: System for Cross-domain Identity Management (SCIM) -- Chapter 17: Remote Access -- Chapter 18: Identity-Based Threat Response -- Chapter 19: Biometric Risks Related to Identities -- Chapter 20: Blockchain and Identity Management -- Chapter 21: Conclusion.
520 $a Discover how poor identity and privilege management can be leveraged to compromise accounts and credentials within an organization. Learn how role-based identity assignments, entitlements, and auditing strategies can be implemented to mitigate the threats leveraging accounts and identities and how to manage compliance for regulatory initiatives. As a solution, Identity Access Management (IAM) has emerged as the cornerstone of enterprise security. Managing accounts, credentials, roles, certification, and attestation reporting for all resources is now a security and compliance mandate. When identity theft and poor identity management is leveraged as an attack vector, risk and vulnerabilities increase exponentially. As cyber attacks continue to increase in volume and sophistication, it is not a matter of if, but when, your organization will have an incident. Threat actors target accounts, users, and their associated identities, to conduct their malicious activities through privileged attacks and asset vulnerabilities. Identity Attack Vectors details the risks associated with poor identity management practices, the techniques that threat actors and insiders leverage, and the operational best practices that organizations should adopt to protect against identity theft and account compromises, and to develop an effective identity governance program. You will: Understand the concepts behind an identity and how their associated credentials and accounts can be leveraged as an attack vector Implement an effective Identity Access Management (IAM) program to manage identities and roles, and provide certification for regulatory compliance See where identity management controls play a part of the cyber kill chain and how privileges should be managed as a potential weak link Build upon industry standards to integrate key identity management technologies into a corporate ecosystem Plan for a successful deployment, implementation scope, measurable risk reduction, auditing and discovery, regulatory reporting, and oversight based on real-world strategies to prevent identity attack vectors.
650 0 $a Data protection. $3 557764
650 1 4 $a Security. $3 1114130
700 1 $a Rolls, Darran. $e author. $4 aut $4 http://id.loc.gov/vocabulary/relators/aut $3 1313286
710 2 $a SpringerLink (Online service) $3 593884
773 0 $t Springer Nature eBook
776 0 8 $i Printed edition: $z 9781484251645
776 0 8 $i Printed edition: $z 9781484251669
856 4 0 $u https://doi.org/10.1007/978-1-4842-5165-2
912 $a ZDB-2-CWD
912 $a ZDB-2-SXPC
950 $a Professional and Applied Computing (SpringerNature-12059)
950 $a Professional and Applied Computing (R0) (SpringerNature-43716)