A security architect is determining the best solution for a new project.
The project is developing a new intranet with advanced authentication capabilities, SSO for users, and automated provisioning to streamline Day 1 access to systems.
The security architect has identified the following requirements: 1
Information should be sourced from the trusted master data source.
2
There must be future requirements for identity proofing of devices and users.
3
A generic identity connector that can be reused must be developed.
4
The current project scope is for internally hosted applications only.
Which of the following solution building blocks should the security architect use to BEST meet the requirements?
Click on the arrows to vote for the correct answer
A. B. C. D.B.
Based on the identified requirements, the security architect should use the following solution building blocks to best meet the requirements:
Solution Building Blocks:
Explanation:
Information should be sourced from the trusted master data source. To ensure that information is sourced from the trusted master data source, LDAP (Lightweight Directory Access Protocol) is the recommended solution building block. LDAP is a protocol used to access and maintain distributed directory information services over an IP network. It is used to centralize user authentication and authorization data, ensuring that user information is sourced from a trusted master data source.
There must be future requirements for identity proofing of devices and users. To address future requirements for identity proofing of devices and users, certificate-based authentication is the recommended solution building block. Certificate-based authentication uses digital certificates to provide strong user authentication and verify device identity. This ensures that only authorized devices and users can access the network and applications.
A generic identity connector that can be reused must be developed. To develop a generic identity connector that can be reused, OAuth (Open Authorization) is the recommended solution building block. OAuth is an open standard for token-based authentication and authorization on the internet. It enables applications to access resources on behalf of a user without requiring the user to disclose their credentials. This enables the development of a generic identity connector that can be reused across multiple applications.
The current project scope is for internally hosted applications only. Since the current project scope is for internally hosted applications only, the recommended solution building block for access control is not required. Therefore, the solution building block for context-aware authentication, SPML (Service Provisioning Markup Language), and NAC (Network Access Control) are not necessary.
Therefore, based on the identified requirements, the recommended solution building blocks are LDAP, certificate-based authentication, and OAuth. The correct answer is option A.