Identification and Authentication
Goals
- Define identification, including “who we claim to be”
- Define identity verification
- Define authentication and its factors
- Compare authentication types
- Compare identification, identity verification, and authentication
- Identify password security best practices
- Identify the factors involved in a multifactor authentication technique
- Align the four types of attacks (i.e., interception, interruption, modification, and fabrication) to the legs of the CIA triad
Key question
How can the claim of identity (identification) be authenticated to ensure information security?
What is Identification and Authentication?
- Identification
- makes a claim about what someone or something is
- Authentication
- establishes whether this claim is true
Example
Payments cards with personal identification number
- Swipe card = asserting that you’re the person indicated on the card
- Enter PIN = authenticating your identity