Authentication

Authentication

from Greek: αὐθεντικός authentikos, "real, genuine," from αὐθέντης authentes, "author"

A1

Authn

Au

Authentication

 The act of confirming the truth of an attribute claimed true by an entity.

In contrast with identification which refers to the act of stating a person or thing's identity, authentication is the process of actually confirming that identity.

Authentication

3 types.

Authentication

1.

Accepting proof of identity given by a credible person or entity.

a.k.a. Trust

Authentication

2.

Comparing the attributes of the object itself to what is known about objects of that origin.

Authentication

3.

Documentation or other external affirmations.

Authentication

Authentication

3 factors.

Authentication

knowledge factors: Something the user knows

password, pass phrase, personal identification number (PIN), challenge response (security question)

Authentication

ownership factors: Something the user has

wrist band, ID card, security token, hardware token, software token

Authentication

inherence factors: Something the user is or does

fingerprint, retinal pattern, DNA sequence, signature, face, voice, bio-electric signals or other biometric identifiers

Authentication

Two-factor, or multiple-factor

card and PIN, password and mobile phone etc.

Authentication

If successful, we know that you are who you say you are.

knowing this, we could say what you are allowed to do...

Authorization

Authorization

A2

Authz

Ar