Assessor Resource

ICTNWK503
Install and maintain valid authentication processes

Assessment tool

Version 1.0
Issue Date: March 2024


This unit describes the skills and knowledge required to design, develop, install and maintain authentication processes to reduce the vulnerability of the system.

It applies to individuals working as middle managers such as information security managers, network engineers or security analysts, who are responsible for implementing and monitoring the organisational security management system.

No licensing, legislative or certification requirements apply to this unit at the time of publication.

You may want to include more information here about the target group and the purpose of the assessments (eg formative, summative, recognition)



Evidence Required

List the assessment methods to be used and the context and resources required for assessment. Copy and paste the relevant sections from the evidence guide below and then re-write these in plain English.

ELEMENT

PERFORMANCE CRITERIA

Elements describe the essential outcomes.

Performance criteria describe the performance needed to demonstrate achievement of the element.

1. Determine authentication requirements

1.1 Determine user and enterprise security requirements with reference to enterprise security plan

1.2 Identify and analyse authentication options according to user and enterprise requirements

1.3 Select the most appropriate authentication and authorisation processes

2. Configure authentication software or tools

2.1 Create an authentication realm and reuse as required to protect different areas of server

2.2 Add users and authorisation rules to new realm according to business needs

2.3 Describe user attributes and user attribute set-up

2.4 Set up an authentication filter and authorisation parameters on the appropriate server according to business requirements

3. Apply authentication methods

3.1 Develop or obtain authentication protocols as required

3.2 Develop and distribute related methods to users according to business need

3.3 Brief user on authentication system and their responsibilities according to enterprise security plan

3.4 Apply authentication system to network and user according to system product requirements

3.5 Record and store permission and configuration information in a secure central location

4. Monitor authentication system

4.1 Review the authentication system according to user and enterprise security and quality of service requirements

4.2 Ensure ongoing security monitoring, using incident management and reporting processes, according to enterprise security plan

4.3 Adjust authentication system if required

Evidence of the ability to:

design and deploy authentications solutions to the business technology environment and business needs

configure authentication software or tools

monitor and test authentication process after implementation

ensure authentication solutions are current.

Note: If a specific volume or frequency is not stated, then evidence must be provided at least once.

To complete the unit requirements safely and effectively, the individual must:

summarise the problems and challenges dealing with organisational authentication issues, including resource accounting through authentication

discuss common virtual private network (VPN) issues, including:

quality of service (QoS) considerations

bandwidth

dynamic security environment

function and operation of VPN concepts

outline authentication adaptors

summarise biometric authentication adaptors

summarise digital certificates, such as VeriSign, X.509, and SSL

explain the function and operation of authentication controls including:

passwords

personal identification numbers (PINs)

smart cards

biometric devices

other authentication protocols

outline network authentication services, such as Kerberos and NT LAN Manager (NTLM)

summarise the features of common password protocols, such as:

challenge handshake authentication protocol (CHAP)

challenge phrases

password authentication protocol (PAP)

remote authentication dial-in user service (RADIUS) authentication

describe the principles of security tokens.

Gather evidence to demonstrate consistent performance in conditions that are safe and replicate the workplace. Noise levels, production flow, interruptions and time variances must be typical of those experienced in the network industry, and include access to:

a site or prototype where network authentication may be implemented and managed

network support tools currently used in industry

organisational security policies related to authentication

manufacturers recommendations

current authentication standards, including biometric authentication adaptors.

Assessors must satisfy NVR/AQTF assessor requirements.


Submission Requirements

List each assessment task's title, type (eg project, observation/demonstration, essay, assingnment, checklist) and due date here

Assessment task 1: [title]      Due date:

(add new lines for each of the assessment tasks)


Assessment Tasks

Copy and paste from the following data to produce each assessment task. Write these in plain English and spell out how, when and where the task is to be carried out, under what conditions, and what resources are needed. Include guidelines about how well the candidate has to perform a task for it to be judged satisfactory.

ELEMENT

PERFORMANCE CRITERIA

Elements describe the essential outcomes.

Performance criteria describe the performance needed to demonstrate achievement of the element.

1. Determine authentication requirements

1.1 Determine user and enterprise security requirements with reference to enterprise security plan

1.2 Identify and analyse authentication options according to user and enterprise requirements

1.3 Select the most appropriate authentication and authorisation processes

2. Configure authentication software or tools

2.1 Create an authentication realm and reuse as required to protect different areas of server

2.2 Add users and authorisation rules to new realm according to business needs

2.3 Describe user attributes and user attribute set-up

2.4 Set up an authentication filter and authorisation parameters on the appropriate server according to business requirements

3. Apply authentication methods

3.1 Develop or obtain authentication protocols as required

3.2 Develop and distribute related methods to users according to business need

3.3 Brief user on authentication system and their responsibilities according to enterprise security plan

3.4 Apply authentication system to network and user according to system product requirements

3.5 Record and store permission and configuration information in a secure central location

4. Monitor authentication system

4.1 Review the authentication system according to user and enterprise security and quality of service requirements

4.2 Ensure ongoing security monitoring, using incident management and reporting processes, according to enterprise security plan

4.3 Adjust authentication system if required

Evidence of the ability to:

design and deploy authentications solutions to the business technology environment and business needs

configure authentication software or tools

monitor and test authentication process after implementation

ensure authentication solutions are current.

Note: If a specific volume or frequency is not stated, then evidence must be provided at least once.

To complete the unit requirements safely and effectively, the individual must:

summarise the problems and challenges dealing with organisational authentication issues, including resource accounting through authentication

discuss common virtual private network (VPN) issues, including:

quality of service (QoS) considerations

bandwidth

dynamic security environment

function and operation of VPN concepts

outline authentication adaptors

summarise biometric authentication adaptors

summarise digital certificates, such as VeriSign, X.509, and SSL

explain the function and operation of authentication controls including:

passwords

personal identification numbers (PINs)

smart cards

biometric devices

other authentication protocols

outline network authentication services, such as Kerberos and NT LAN Manager (NTLM)

summarise the features of common password protocols, such as:

challenge handshake authentication protocol (CHAP)

challenge phrases

password authentication protocol (PAP)

remote authentication dial-in user service (RADIUS) authentication

describe the principles of security tokens.

Gather evidence to demonstrate consistent performance in conditions that are safe and replicate the workplace. Noise levels, production flow, interruptions and time variances must be typical of those experienced in the network industry, and include access to:

a site or prototype where network authentication may be implemented and managed

network support tools currently used in industry

organisational security policies related to authentication

manufacturers recommendations

current authentication standards, including biometric authentication adaptors.

Assessors must satisfy NVR/AQTF assessor requirements.

Copy and paste from the following performance criteria to create an observation checklist for each task. When you have finished writing your assessment tool every one of these must have been addressed, preferably several times in a variety of contexts. To ensure this occurs download the assessment matrix for the unit; enter each assessment task as a column header and place check marks against each performance criteria that task addresses.

Observation Checklist

Tasks to be observed according to workplace/college/TAFE policy and procedures, relevant legislation and Codes of Practice Yes No Comments/feedback
Determine user and enterprise security requirements with reference to enterprise security plan 
Identify and analyse authentication options according to user and enterprise requirements 
Select the most appropriate authentication and authorisation processes 
Create an authentication realm and reuse as required to protect different areas of server 
Add users and authorisation rules to new realm according to business needs 
Describe user attributes and user attribute set-up 
Set up an authentication filter and authorisation parameters on the appropriate server according to business requirements 
Develop or obtain authentication protocols as required 
Develop and distribute related methods to users according to business need 
Brief user on authentication system and their responsibilities according to enterprise security plan 
Apply authentication system to network and user according to system product requirements 
Record and store permission and configuration information in a secure central location 
Review the authentication system according to user and enterprise security and quality of service requirements 
Ensure ongoing security monitoring, using incident management and reporting processes, according to enterprise security plan 
Adjust authentication system if required 

Forms

Assessment Cover Sheet

ICTNWK503 - Install and maintain valid authentication processes
Assessment task 1: [title]

Student name:

Student ID:

I declare that the assessment tasks submitted for this unit are my own work.

Student signature:

Result: Competent Not yet competent

Feedback to student

 

 

 

 

 

 

 

 

Assessor name:

Signature:

Date:


Assessment Record Sheet

ICTNWK503 - Install and maintain valid authentication processes

Student name:

Student ID:

Assessment task 1: [title] Result: Competent Not yet competent

(add lines for each task)

Feedback to student:

 

 

 

 

 

 

 

 

Overall assessment result: Competent Not yet competent

Assessor name:

Signature:

Date:

Student signature:

Date: