Erişim Kontrolü

WEBVTT 00:00:01.516 --> 00:00:07.978 Freunde, willkommen zum ICD International Digital Competence Standards Conversion Inner Training Program. 00:00:08.837 --> 00:00:09.438 Ich bin Utku. 00:00:11.819 --> 00:00:18.180 Heute werde ich Ihnen im Rahmen des Standardmoduls Informationen zur Zugriffskontrolle geben. 00:00:20.461 --> 00:00:23.382 Das wird auch unser viertes Modul sein. 00:00:26.202 --> 00:00:26.943 Lass uns anfangen. 00:00:27.043 --> 00:00:28.383 Was bedeutet Zugriffskontrolle? 00:00:32.168 --> 00:00:38.132 Personen, die die Berechtigung zur Nutzung von Daten haben, sollten nur auf die Daten zugreifen können, für die sie autorisiert sind. 00:00:38.432 --> 00:00:39.813 Das nennt man Zugriffskontrolle. 00:00:41.274 --> 00:00:46.397 Zugriffskontrolle ist ein sehr wichtiger Aspekt der Informationstechnologie- und Systemsicherheit. 00:00:47.718 --> 00:00:49.219 Was sollten wir daraus verstehen? 00:00:49.759 --> 00:00:51.360 Was wir daraus verstehen sollten, ist folgendes. 00:00:51.881 --> 00:00:56.584 Angenommen, wir arbeiten an einem Computer, der von vielen Personen gemeinsam genutzt wird. 00:00:57.504 --> 00:01:01.327 Nicht alle Daten auf diesem Computer sind für uns relevant. 00:01:02.455 --> 00:01:07.098 Deshalb wird ein Konto erstellt, das nur auf die Daten zugreifen kann, auf die wir zugreifen dürfen. 00:01:07.379 --> 00:01:11.402 In diesem Konto können wir nur auf die uns erlaubten Daten zugreifen. 00:01:11.842 --> 00:01:19.027 Auf diese Weise entwickeln und vermehren sich Daten, die nichts mit uns zu tun haben, nur im Wissen anderer Personen. 00:01:20.128 --> 00:01:25.072 Das bietet uns auch einen effektiven Trennpunkt, während wir die Sicherheit gewährleisten, zwischen den Benutzern. 00:01:25.772 --> 00:01:28.074 Lassen Sie uns jetzt unser Wissen zu diesem Thema vertiefen. 00:01:33.937 --> 00:01:37.259 Ein weiterer wichtiger Aspekt der Zugangskontrolle ist die Sicherheit. 00:01:37.759 --> 00:01:41.160 Es ist sehr wichtig, wer welche Daten und Informationen sehen kann. 00:01:41.761 --> 00:01:44.202 Wer darf beispielsweise den Reisepass und die Identitätskontrolle durchführen? 00:01:44.702 --> 00:01:49.684 Nur Sicherheitskräfte dürfen die Reisepass- und Identitätskontrolle durchführen. 00:01:51.005 --> 00:02:02.450 Ansonsten können unsere persönlichen Daten in die Hände anderer gelangen, wenn wir die Reisepass- und Identitätskontrolle durchlaufen, und gleichzeitig können diese Daten gegen uns für ein Verbrechen verwendet werden. 00:02:02.570 --> 00:02:03.170 Also, welche Fragen sollte die Zugangskontrolle beantworten? 00:02:06.735 --> 00:02:09.895 Die Zugangskontrolle beantwortet im Wesentlichen drei Hauptfragen. 00:02:12.717 --> 00:02:16.678 Wer hat Zugriff auf die Daten? 00:02:17.399 --> 00:02:18.579 Welche Daten können diese Personen zugreifen? 00:02:19.079 --> 00:02:20.860 Wie und wo können diese Personen die abgerufenen Daten verwenden?

WEBVTT 00:00:01.516 --> 00:00:07.978 Friends, welcome to the International Digital Competence Standards Conversion Internal Training Program with ICD. 00:00:08.837 --> 00:00:09.438 I'm Utku. 00:00:11.819 --> 00:00:18.180 Today, within the standard module, I will provide you with information about access control. 00:00:20.461 --> 00:00:23.382 This will also be our fourth famous one. 00:00:26.202 --> 00:00:26.943 So let's get started. 00:00:27.043 --> 00:00:28.383 What does access control mean? 00:00:32.168 --> 00:00:38.132 People who have the authority to use data should only be able to access the data they are authorized to access. 00:00:38.432 --> 00:00:39.813 This is called access control. 00:00:41.274 --> 00:00:46.397 Access control is a very important issue in the security of information technologies and systems. 00:00:47.718 --> 00:00:49.219 What do we need to understand from this? 00:00:49.759 --> 00:00:51.360 What we need to understand from this is as follows. 00:00:51.881 --> 00:00:56.584 For example, we are working on a computer that is used by many people. 00:00:57.504 --> 00:01:01.327 Not all the data on this computer is necessary for us. 00:01:02.455 --> 00:01:07.098 Therefore, an account is created for us only for the data we can access. 00:01:07.379 --> 00:01:11.402 Within this account, we can only access the data allowed to us. 00:01:11.842 --> 00:01:19.027 Thus, data unrelated to us only develops and multiplies within the knowledge of other people. 00:01:20.128 --> 00:01:25.072 This also provides us with an effective separation point while ensuring security among users. 00:01:25.772 --> 00:01:28.074 Let's deepen our knowledge on this topic now. 00:01:33.937 --> 00:01:37.259 One of the most important aspects of access control is security. 00:01:37.759 --> 00:01:41.160 It is crucial to determine who can see which data and information. 00:01:41.761 --> 00:01:44.202 For example, who can perform passport and identity checks? 00:01:44.702 --> 00:01:49.684 The only institution authorized to perform passport and identity checks is law enforcement. 00:01:51.005 --> 00:02:02.450 Apart from that, when we enter passport and identity checks, our personal identifiers can fall into the wrong hands, and at the same time, crimes can be committed against us with this data. 00:02:02.570 --> 00:02:03.170 So, what questions should access control answer? 00:02:06.735 --> 00:02:09.895 Access control basically answers three main questions. 00:02:12.717 --> 00:02:16.678 Who can access the data? 00:02:17.399 --> 00:02:18.579 Which data can these individuals access? 00:02:19.079 --> 00:02:20.860 In what way and where can these individuals use the data they access?

WEBVTT 00:00:01.516 --> 00:00:07.978 Arkadaşlar, ICD'yle Uluslararası Dijital Yeterlik Standartları Çevirme İçe Eğitim Programına hoş geldiniz. 00:00:08.837 --> 00:00:09.438 Ben Utku. 00:00:11.819 --> 00:00:18.180 Bugün standart modül dahilinde sizlere erişim kontrolü hakkında bilgiler vereceğim. 00:00:20.461 --> 00:00:23.382 Bu aynı zamanda bizim dördüncü ünlü temiz olacak. 00:00:26.202 --> 00:00:26.943 Peki başlayalım. 00:00:27.043 --> 00:00:28.383 Erişim kontrolü ne demektir? 00:00:32.168 --> 00:00:38.132 Verileri kullanma yetkisine sahip kişiler yalnızca yetkilendirildikleri verilere erişebilmelidir. 00:00:38.432 --> 00:00:39.813 Buna erişim kontrolü denir. 00:00:41.274 --> 00:00:46.397 Erişim kontrolü, bilişim teknolojileri ve sistemleri güvenliğinde çok dikkat etmemiz gereken bir konudur. 00:00:47.718 --> 00:00:49.219 Buradan anlamamız gereken nedir? 00:00:49.759 --> 00:00:51.360 Buradan anlamamız gereken şudur. 00:00:51.881 --> 00:00:56.584 Mesela bir bilgisayar üzerine çalışıyoruz ve bilgisayar ortak olarak birçok kişi tarafından kullanılıyor. 00:00:57.504 --> 00:01:01.327 Bu bilgisayarın üzerindeki verilerin hepsi bizim için gerekli değildir. 00:01:02.455 --> 00:01:07.098 Bu sebeple bizim sadece erişebileceğimiz verilere dair bir hesap yaratılır. 00:01:07.379 --> 00:01:11.402 Bu hesap içerisinde biz sadece bize izin verilen verilere ulaşabiliriz. 00:01:11.842 --> 00:01:19.027 Bu sayede bizimle ilgisi olmayan veriler sadece diğer kişilerin bilgisi dahilinde gelişir ve çoğalır. 00:01:20.128 --> 00:01:25.072 Bu da güvenliği sağlarken bize etkin bir ayırma noktası sağlar kullanıcılar arasında. 00:01:25.772 --> 00:01:28.074 Bu konu hakkında bilgimizi şimdi derinleştirelim. 00:01:33.937 --> 00:01:37.259 İrişim kontrolüyle ilgili en önemli unsurlardan biri de güvenliktir. 00:01:37.759 --> 00:01:41.160 Kimin hangi verileri ve hangi bilgileri görebileceği çok önemlidir. 00:01:41.761 --> 00:01:44.202 Mesela pasaport ve kimlik kontrolünü kim yapabilir? 00:01:44.702 --> 00:01:49.684 Pasaport ve kimlik kontrolünü yapabilecek tek kurum sadece emniyet güçleridir. 00:01:51.005 --> 00:02:02.450 Bunun dışında pasaport ve kimlik kontrolüne girdiğimizde kişisel belirlerimiz başkalarının eline geçebilir ve aynı zamanda bu verilerle bize karşı bir 00:02:02.570 --> 00:02:03.170 suçla işlenebilir. 00:02:06.735 --> 00:02:09.895 Peki erişim kontrolü hangi sorulara cevap vermelidir? 00:02:12.717 --> 00:02:16.678 Erişim kontrolü temel olarak üç tane ana soruyu cevaplar. 00:02:17.399 --> 00:02:18.579 Verilere kim erişebilir? 00:02:19.079 --> 00:02:20.860 Bu kişiler hangi verilere erişebilir? 00:02:21.400 --> 00:02:24.520 Bu kişiler ulaştıkları verileri hangi şekilde ve nerede kullanabilir?