2) Identification and Authentication

Question 1

(T/F) Multifactor authentication is the use of more than one authentication method to access an information system.

Answer 1

True

Question 2

The claim of what someone or something is.

Answer 2

Identification

Question 3

Establishes whether an identification claim is true.

Answer 3

Authentication

Question 4

Something that supports our claim to identity, either in our personal interactions or in computer systems, e.g. social security cards.

Answer 4

Identity verification

Question 5

Authentication requirements help prevent this crime.

Answer 5

Falsifying identification

Question 6

A set of methods we use to establish a claim of identity as being true.

Answer 6

Authentication

Question 7

A password is an example of this type of factor.

Answer 7

Something you know

Question 8

An iris scan is an example of this type of factor.

Answer 8

Something you are

Question 9

A swipe card is an example of this type of factor.

Answer 9

Something you have

Question 10

The time delay between your keystrokes is an example of this type of factor.

Answer 10

Something you do

Question 11

Being at a specific terminal is an example of this type of factor.

Answer 11

Where you are

Question 12

Uses one or more authentication methods for access.

Answer 12

Multifactor authentication

Question 13

An authentication mechanism in which both parties authenticate each other.

Answer 13

Mutual authentication

Question 14

Elements of a complex password.

Answer 14

Uppercase, lowercase, numbers, and symbols

Question 15

Unique personal characteristics, such as fingerprints, used for identification purposes.

Answer 15

Biometrics

Question 16

A stipulation that our chosen biometric characteristic should be present in the majority of people we expect to enroll in the system.

Answer 16

Universality

Question 17

A measure of the differences of a particular characteristic among a group of individuals.

Answer 17

Uniqueness

Question 18

How well a particular characteristic resists change over time and with advancing age.

Answer 18

Permenance

Question 19

How easy it is to acquire a characteristic that we can later use to authenticate a user.

Answer 19

Collectability

Question 20

A set of metrics that judge how well a given system functions.

Answer 20

Performance measurement

Question 21

A measure of how agreeable a particular characteristic is to the users of a system.

Answer 21

Acceptability

Question 22

Describes the ease with which a system can be tricked by a falsified biometric identifier.

Answer 22

Circumvention

Question 23

The rate at which we accept users whom we should actually have rejected.

Answer 23

FAR

Question 24

FAR is the rate at which we accept users whom we should actually have rejected. What does FAR stand for?

Answer 24

False acceptance rate

Question 25

The rate at which we reject legitimate users when we should have accepted them.

Answer 25

FRR

Question 26

FRR is the rate at which we reject legitimate users when we should have accepted them. What does FRR stand for?

Answer 26

False rejection rate

Question 27

A badge or token is considered what type of authentication?

Answer 27

Something you have

Question 28

A password or PIN is considered what type of authentication?

Answer 28

Something you know

Question 29

The set of methods we use to establish a claim of identity as being true.

Answer 29

Authentication

Question 30

A fingerprint is considered what type of authentication?

Answer 30

Something you are

Question 31

What type of authentication can prevent a man-in-the-middle attack?

Answer 31

Mutual

Question 32

The biometric characteristic that measures how well a factor resists change over time and with advancing age.

Answer 32

Permanence