Authentication
|
Back |
|
Contact Us |
 |
|
 |
|
Authentication is a process of establishing the identity of
the user and this usually involves a tool such as a smart card, USB Token, OTP
Token, bio-metric system of retina scan, voice recognition and or fingerprints
etc.In private and public computer networks (including the Internet),
authentication is commonly done through the use of logon passwords. The weakness
in this system is that the passwords can often be stolen, accidentally revealed,
or forgotten leading to monetary losses. For this reason, Internet business and
many other transactions require a more stringent authentication process. The use
of digital certificates issued and verified by a Certificate Authority (CA) as
part of a public key infrastructure is considered likely to become the standard
way to perform authentication on the Internet.
Logically, authentication precedes
authorization (although they may often seem to
be combined).
|
There are three identified levels of
Authentication:
- One factor Authentication: Something you
know
Password (in normal login today we do one
factor authentication for PC login)
- Two Factor Authentication: Something you
know and something you have
Password and devices like OTP, PKI token,
smart cards.
- Three Factor Authentication: Something
you know, something you have and something
you are (physical presence)
Password, OTP/PKI token/smart card and
biometric presence
|
 |
|
| |
| |
