Authentication Flashcards
What are the 7 key concepts in computer security?
1) Authentication
2) Authorization
3) Confidentiality
4) Integrity
5) Accountability
6) Availability
7) Non-repudiation
What are the 4 concept solved by cryptography?
1) Authentication
2) Confidentiality
3) Integrity
7) Non- Repudiation
Define Authentication
The act of verifying someone’s identity
Define Authorization
The act of checking whether a user has permission to conduct some action
Define Confidentality
To keep contents of a transient communication or data on temporary or persistent storage secret
Define Integrity
To keep malicious users from modifying the contents of any data
Define Accountability
Ensure you can determine who the attacker or identify user when something goes wrong
Define Availability
When one can respond to its user’ request in a reasonable time
Define Non-repudiation
Ensure undeniability of a transaction by any of the parties involved
What are the advantages of passwords?
1) simple to implement
2) simple for users to understand
What are the disadvantages of passwords?
1) Most users do not choose strong passwords
2) if ur pw has is in a dictionary, gg
3) Users need to reuse pw everytime for login, each time is vulnerable
What is the three other ways you can authenticate with something the user has?
1) OTP Cards
2) Smart Cards
3) ATM Cards
What does ‘Salt’ do for password?
Salt is random data used as additional input to a one-way function that ‘hashes’ a password.
1) Safeguard against passwords in storage
2) Defend against dictionary attacks
What are OTP cards?
They generate a new password each time a user logs in.
