Answer the following questions about access control in mongoDB:
It is intended to evaluate and answer the following questions related to the Policy management function, and to validate whether the system allows implementing forms of Access Control (CA), based on the NIST document.
Metric - Does the system allow policy management?
Scenario - multiple policies
Purpose - to verify that the AC system provides policy identification for multiple policies.
Reply:
Scenario - policy expiration
Purpose - to verify that the AC system allows for policy expiration assignment.
Reply:
Scenario - policy goals
Objective - check if the AC system allows the assignment of policy goals.
Reply:
Scenario - policy destination
Objective - check if the AC system allows assignment of policy destination event.
Reply:
Scenario - policy mix
Purpose - to verify that the AC system provides policy-matching logic.
Reply:
Scenario - policy distribution
Purpose - to verify that the AC system requires policy distribution approval.
Reply:
Scenario - policy source
Purpose - to verify that the AC system provides policy source authorization.
Reply:
Scenario - activation check
Purpose - to verify whether the AC system provides policy implementation or activation verification.
Reply:
Scenario - impact of policies
Objective - to verify that the AC system provides an analysis of the impact of policies.
Reply:
Scenario - runtime policy
Objective - check if the AC system allows change of runtime policy rule.
Reply:
It is intended to evaluate and answer the following questions regarding the role of Delegation of administrative capabilities, and to validate whether the system allows implementing forms of Access Control (CA), based on the NIST document.
To ensure ease of provisioning and maintaining accounts, roles can be delegated, ensuring that policies are consistent with specific roles within the organization.
Metric - Does the system allow delegation of administrative capabilities?
Scenario - delegation policies
Purpose - checking the AC system allows for the administration of delegation policies.
Reply:
It is intended to evaluate and answer the following questions regarding the function of Flexibilities of configuration into existing systems, and to validate whether the system allows implementing forms of Access Control (CA), based on the NIST document.
Metric - Configuration flexibilities in existing systems?
Scenario - operating system
Objective - check if the CA mechanism is imposed by the operating system.
Reply:
Scenario - microkernel
Objective - to verify if the AC mechanism is imposed by a microkernel.
Reply:
Scenario - Applications
Purpose - to verify whether CA is enforced by applications.
Reply:
Scenario - client / server
Objective - to verify if CA is imposed by a client / server communication protocol.
Reply:
It is intended to evaluate and answer the following questions related to the function of The horizontal scope (across platforms and applications) of control, and to validate whether the system allows implementing forms of Access Control (CA), based on the NIST document.
Metric - Does the horizontal scope system (between platforms and applications) control?
Scenario - single host
Purpose - to verify that the AC system supports only a single host.
Reply:
Scenario - multiple hosts via network
Purpose - to verify that the AC system supports multiple hosts over the network.
Reply:
Scenario - virtual communities
Objective - check if the AC system supports virtual communities.
Reply:
• MEAN stack developer since June 2018.
• Developed many feature for campus management product called CAMU, that supports all educational standards i.e. University, Schools, college.
• Designed many pages using Bootstrap that is responsive to various screen resolutions.