SB 12: More Authentication Flashcards
What are some issues with remote authentication?
Ensuring the passwords are properly protected when being sent for authentication.
Risk of sniffing and replay attacks that could jeopardize the security of the passwords.
What is the difference between a soft and a hard certificate?
Soft certificate: A private key and any relevant identifying information, similar to a certificate. The safety is dependent on whatever device the certificate is stored on.
Hard certificate: An external device that enables communication with other devices. The private key is kept hidden from and inaccessible by external processes. I.e a smart card.
Mention a few different biometric authentication methods
Fingerprints
Voice
Eyes
Face
Keystrokes
Combinations
How does a location based authentication work?
Describe in simple terms
Authentication based on the physical location of the entity. The signature is generated from GPS data, which changes in respect to time and location. It makes it unique and thus not possible to forge.
Can be used to restrict which locations an entity is authorized to log in from.
