AP Cybersecurity Unit 2 Lesson 5 Lab
Lab — Operation Gatekeeper: Access Control Breach Investigation
6 steps, 30 points — Mixed formats: matching, fill-blank, select-all, MCQ, and written analysis
An intern at Catalyst downloaded $400M in proprietary gene therapy formulas. The intern’s role should have limited access to the general research library only. Your investigation traces how access control failures enabled the breach: wrong role assignment, overly broad permissions, no access reviews, and no exfiltration controls.
Assigning permissions to job titles rather than individuals is called access control (RBAC).
The gradual accumulation of excess permissions as employees change roles is called privilege .
Proving your identity with a password is . Verifying what you are allowed to do is authorization.
Requiring two different credential types (password + phone) is authentication.
Accounts that belong to former employees but were never disabled are called accounts.
AP® is a registered trademark of the College Board.
Get in Touch
Whether you're a student, parent, or teacher — I'd love to hear from you.
Just want free AP CS resources?
Enter your email below and check the subscribe box — no message needed. Students get daily practice questions and study tips. Teachers get curriculum resources and teaching strategies.
Message Sent!
Thanks for reaching out. I'll get back to you within 24 hours.
Prefer email? Reach me directly at [email protected]