Plan Do Check

Development

5 Domains for a sense of place.

This article discusses five different decision-making domains, each with its unique characteristics and approaches: Decision-Making Domain Problem-Solving Method Description Clear Domain Sense–Categorize–Respond Well-understood situations with established rules and clear cause-and-effect relationships. Complicated Domain Sense–Analyze–Respond Complex situations where expertise is needed, and multiple valid approaches are possible. Complex Domain Probe–Sense–Respond Dealing with “unknown unknowns,” where cause and effect are unpredictable. Chaotic Domain Act–Sense–Respond Highly unpredictable situations demanding immediate action to restore order.

Sensible Approaches to Passwords

Authentication and Password Strength Guidelines Authentication Solution and Sensitive Accounts Do NOT allow login with sensitive accounts (used internally within the solution) to any front-end user-interface. Do NOT use the same authentication solution (e.g., IDP / AD) for unsecured access (e.g., public access / DMZ) as used internally. Proper Password Strength Controls A critical aspect of authentication is password strength. A strong password policy is essential to protect against unauthorized access.

Mitigations

ACTIONS TO TAKE TODAY TO MITIGATE MALICIOUS CYBER ACTIVITY: Continuously remove and disable accounts and groups from the enterprise that are no longer needed, especially privileged accounts. Enable and enforce multifactor authentication with strong passwords. Store credentials in a secure manner, such as with a credential manager, vault, or other privilege account management solution. Understanding and Mitigating LDAP Query Threats in Active Directory Environments LDAP (Lightweight Directory Access Protocol) is a widely used protocol for accessing and managing directory information services.