Zero Trust
A security model that requires strict identity verification for every person and device attempting to access resources, regardless of network location.
Practice this topic
Test your knowledge of access control concepts with exam-style practice questions.
Related Access Control terms
Access Control List (ACL)
A list of permissions attached to an object that specifies which users or system processes are granted access.
Authentication
The process of verifying the identity of a user, device, or system before granting access.
Authorization
The process of determining what resources or actions an authenticated user is permitted to access.
Multi-Factor Authentication (MFA)
A security mechanism that requires two or more independent credentials to verify a user's identity.
Single Sign-On (SSO)
An authentication scheme that allows a user to log in with a single set of credentials to access multiple applications.
Privilege Escalation
An attack where a user gains elevated access to resources that are normally protected, beyond what their assigned permissions allow.