Presentation is loading. Please wait.

Presentation is loading. Please wait.

Authorization vs. Authentication Authentication is the process of proving identity to the system –login Authorization happens after authentication. It.

Published byDaniela Marion Murphy Modified over 8 years ago

Similar presentations

Presentation on theme: "Authorization vs. Authentication Authentication is the process of proving identity to the system –login Authorization happens after authentication. It."— Presentation transcript:

1 Authorization vs. Authentication Authentication is the process of proving identity to the system –login Authorization happens after authentication. It determines what you have rights to. –Data access, read/write/modify –Program execution allowed or not –Ability to search directories

2 Authentication Authentication has proven to be one of the most difficult tasks in system security. –What can be used to uniquely identify a user or group to the system and still be secure?

3 Authentication Methods –Userid/password Easy to implement Hard to administer –Difficult requiring users to have adequate passwords –What is an adequate password? –Humans have bad memories. What was my password? –Should there be a time limit on the password? –ID Cards Requires some equipment cost Doesn’t guarantee the actual user is the one with the card What about lost/stolen cards?

4 Authentication Methods –ID Cards / password The id card acts as a user id Adds no more security. Combines the worst of both the userid/password system and the ID card system –Biometrics Fingerprint –Expensive hardware (getting cheaper) –What happens when the user gets a cut, or was gardening over the weekend?

5 Authentication Methods –Biometrics Iris Scan –Very expensive equipment –Many false negatives –What happens with contacts? –What about eyes exams? Facial Recognition –Very expensive –Has not worked once yet? In all forms of authentication some sort of manual bypass is required! –Which allows for social engineering exploits!

6 Authorization There are two major ways of providing authorization –UNIX file permissions –ACL (Access Control List) Created by Novel Used by Microsoft – with some changes!

7 When you have a problem with your machine and you are on a tech support call, do you give your super user / administrator password to the technician?

Download ppt "Authorization vs. Authentication Authentication is the process of proving identity to the system –login Authorization happens after authentication. It."

Similar presentations

Policing the Power of Identity Controls Power Behavior Verify that controls are in place and functioning Monitor user behavior and verify that people.

Policing the Power of Identity Controls Power Behavior Verify that controls are in place and functioning Monitor user behavior and verify that people.
By Aidan Summerville.  The process inn which a person’s unique physical and other traits are detected and recorded by an electronic device or system.

By Aidan Summerville.  The process inn which a person’s unique physical and other traits are detected and recorded by an electronic device or system.
By: Monika Achury and Shuchita Singh

By: Monika Achury and Shuchita Singh
Polytechnic University of Tirana Faculty of Information Technology Computer Engineering Department Identification of on-line users and Digital Signature.

Polytechnic University of Tirana Faculty of Information Technology Computer Engineering Department Identification of on-line users and Digital Signature.
Chapter 2 Accessing Your System and the Common Desktop Environment.

Chapter 2 Accessing Your System and the Common Desktop Environment.
95752:3-1 Access Control. 95752:3-2 Access Control Two methods of information control: –control access –control use or comprehension Access Control Methods.

95752:3-1 Access Control :3-2 Access Control Two methods of information control: –control access –control use or comprehension Access Control Methods.
PALM VEIN TECHNOLOGY.

PALM VEIN TECHNOLOGY.
SE571 Security in Computing

SE571 Security in Computing
Marjie Rodrigues 411154.

Marjie Rodrigues
Lecture 3: Access Control Fred Chong CS290N Architectural Support for Secure and Reliable Computing.

Lecture 3: Access Control Fred Chong CS290N Architectural Support for Secure and Reliable Computing.
Geoff Lacy. Outline  Definition  Technology  Types of biometrics Fingerprints Iris Retina Face Other ○ Voice, handwriting, DNA  As an SA.

Geoff Lacy. Outline  Definition  Technology  Types of biometrics Fingerprints Iris Retina Face Other ○ Voice, handwriting, DNA  As an SA.
Security Measures Using IS to secure data. Security Equipment, Hardware Biometrics –Authentication based on what you are (Biometrics) –Biometrics, human.

Security Measures Using IS to secure data. Security Equipment, Hardware Biometrics –Authentication based on what you are (Biometrics) –Biometrics, human.
Extranet Enhancements JTC Spring 2015 May 13, 2015.

Extranet Enhancements JTC Spring 2015 May 13, 2015.
CN1260 Client Operating System Kemtis Kunanuraksapong MSIS with Distinction MCT, MCITP, MCTS, MCDST, MCP, A+

CN1260 Client Operating System Kemtis Kunanuraksapong MSIS with Distinction MCT, MCITP, MCTS, MCDST, MCP, A+
5.1 © 2004 Pearson Education, Inc. Lesson 5: Administering User Accounts Exam 70-217 Microsoft® Windows® 2000 Directory Services Infrastructure Goals 

5.1 © 2004 Pearson Education, Inc. Lesson 5: Administering User Accounts Exam Microsoft® Windows® 2000 Directory Services Infrastructure Goals 
BTEC NAT Unit 15 - Organisational Systems Security ORGANISATIONAL SYSTEMS SECURITY Unit 15 Lecture 6 BIOMETRICS.

BTEC NAT Unit 15 - Organisational Systems Security ORGANISATIONAL SYSTEMS SECURITY Unit 15 Lecture 6 BIOMETRICS.
CSCE 201 Identification and Authentication Microsoft support Fall 2010.

CSCE 201 Identification and Authentication Microsoft support Fall 2010.
Presented by: Lin Jie Authors: Xiaoyuan Suo, Ying Zhu and G. Scott. Owen.

Presented by: Lin Jie Authors: Xiaoyuan Suo, Ying Zhu and G. Scott. Owen.
» Jun 9, 2003 Speaker Verification Secure AND Efficient, Deployments in Finance and Banking Jonathan Moav Director of Marketing

» Jun 9, 2003 Speaker Verification Secure AND Efficient, Deployments in Finance and Banking Jonathan Moav Director of Marketing
Lecture 7 Page 1 CS 236 Online Challenge/Response Authentication Authentication by what questions you can answer correctly –Again, by what you know The.

Lecture 7 Page 1 CS 236 Online Challenge/Response Authentication Authentication by what questions you can answer correctly –Again, by what you know The.

Similar presentations

Ads by Google