I’m studing for my CISSP (learning a lot too) and one of the problem I have is puzzling through the meanings of the definitions. I’m doing this the slow and old fashioned way where I read a paragraph, then attempt to type it out in my own words. Here’s a sentence I’m stuck on:

An identity-based access control is a type of discretionary access control that is based on an individual’s identity

Now, I understand how Identity differs from authentication, the practice of verifying someone’s identity, but when you’ve just left
“manditory access“, “rule-based“, “user-directed“, and are about to enter “role-based” and “task-based“, a little clarification goes a long way.

I got Steph an IRiver Flash MP3 player a while ago. It only took a couple months before she broke the play button on it. She’s kinda hard on stuff.

Back then, we sent it in and they sent us back another one. Well, she just broke it again in the same way and we’re past the one year warranty. I’d call it a defective product, if not for the fact that this sort of thing seems to happen to her with items that are normally considered pretty rugged.

So now I need to either get her another one, or give her mine. CNet has a review of MP3 players that was updated less then a week ago. I’m torn on whether I want to get her something nice, something tough, or something cheap.