authentication and authorization design

Question 1

_____ is the study and recording of human behavior such as motion and action to authorize access.

Answer 1

Gait analysis

Question 2

_____ is an in-depth biometric solution that uses a high-powered camera and infrared light to create a template from the unique pattern of blood vessels in a person’s finger or palm

Answer 2

Vascular biometrics

Question 3

What is HOTP?

Answer 3

HMAC-Based One-Time Password Algorithm

This requests a code and doesn’t have a time to expire

Question 4

What is TOTP?

Answer 4

Time-Based One-Time Password Algorithm

This requests a code and has a expiration

Question 5

Differentiate between retinal and iris scanners.

Answer 5

Retinal scans are more intrusive and accurate than iris scans. Retinal scans use an IR light to identify blood vessel patterns, which remain largely unchanged throughout a person’s lifespan. The equipment needed to perform retinal scans is expensive and the process is complex and intrusive.

Iris scans match patterns on the surface of the eye using near-IR imaging, making the less intrusive and quicker than retinal scanning. Equipment is less expensive and easier to deploy, but iris scans might be spoofed with a high-resolution photo of a person’s eye.

Question 6

What is FRR?

Answer 6

False Rejection Rate

Question 7

What is FAR?

Answer 7

False Acceptance Rate

Question 8

What is CER

Answer 8

Crossover Error Rate