chapter 7 Authentication

Question 1

Describe the Somewhere you are authentication attribute

Answer 1

Location-based authentication, measures some statistic about where you are. Using ip addresses or geolocation, etc

Question 2

Describe the Something you Exhibit authentication attribute

Answer 2

Behavioral based authentication and authorization, with specific emphasis on personality traits

Question 3

Describe the Someone you know Authentication attribute

Answer 3

Uses a web of trust model where new users are vouched for by existing users

Question 4

Where are the user account names stored in Linux?

Answer 4

/etc/passwd

Question 5

Where are the password hashes stored at in Linux?

Answer 5

/etc/shadow

Question 6

What is a pluggable authentication module (PAM)

Answer 6

A package for enabling different authentication providers

Question 7

What is Single sign-on (SSO)

Answer 7

Allows the user to authenticate once to a local device and be authenticated to compatible application servers without having to enter credentials again

Question 8

What is Kerberos?

Answer 8

A single sign-on network authentication and authorization protocol

Question 9

What is the Key distribution center (KDC)

Answer 9

Component of Kerberos that authenticates users and issues tickets (tokens)

Question 10

What is a Ticket Granting Ticket (TGT)

Answer 10

In Kerberos, a token issued to an authenticated account to allow access to authorized application servers

Question 11

How does Ticket Granting Ticket (TGT) prevent replay attacks?

Answer 11

By time stamping the ticket with a default of 10 hours which requires the workstation and servers on the network must be synchronized within five minutes of each other