§-Quick questions
NSWSoftware EngineeringModule 1: Secure Software Architecture
Quick questions on Authentication and authorisation explained: HSC Software Engineering Module 1
3short Q&A pairs drawn directly from our worked dot-point answer. For full context and worked exam questions, read the parent dot-point page.
What is authentication?Show answer
Authentication confirms a user's identity. It relies on one or more factors:
What is authorisation?Show answer
Once a user is authenticated, authorisation governs which actions they can perform and which resources they can access. The two dominant models:
What is least privilege?Show answer
Whichever model is used, the principle of least privilege says give each user only the permissions strictly needed for their role. A junior support agent does not need access to billing data. A read-only auditor never needs write permissions.
Have a question we have not covered?
This dot-point answer is short enough that we have not extracted many short questions yet. Read the full dot-point answer or ask Mo, our study assistant, in the chat for follow ups.
