Authentication is the process of giving access to authorized users and denying access to unauthorized users for a particular resource on a server. This might involve the use of a document, password or biometric details, the user needs to identify him or herself before they are given access. Authentication is a protocol under Logical Access Control Systems and the authentication controls can be embedded within operating systems, applications, add-on security packages, or database and telecommunication management systems.
The most frequently used type of authentication are;
Single Factor Authentication
This is the process of authorizing a user with only one out of the three categories of credentials. It is the weakest form of authentication which is used by most systems.
Two Factor Authentication
This is the process of authorizing a user or group of users with two layers of security, could be a password and a token or a pin and a one time password. This provides a high level of security which is needed by financial institutions and e-commerce systems.
Multi-Factor authentication is an extra layer of security included in the two-layer security to enhance the security of a transaction.
This is the use of several categories of authentication factors to confirm the identity of a user during a transaction.
Kerberos Authentication Protocol
Kerberos version 5 is the default authentication protocol for windows server 2003, the Kerberos is derived from Greek mythology (three-headed dog) because of its three components which are
The Kerberos Protocol is required when you need to;
NT LAN Manager Authentication
The NT Lan Manager Authentication Protocol is the main authentication type used to enable network authentication for versions of Windows earlier than Windows 2000 such as Windows NT 4. This protocol is used for authentication of all machines between Windows 2000 and Windows NT.
Secure Socket Layer/ Transport Layer Security (SSL/TLS)
Secure Socket Layer is a Windows 2003 server security protocol which utilizes public key technology to provide a secure channel for applications communication of a non-secure network such as the internet.
The SSL works on the OSI Layer and provide encryption/decryption for the following protocols;
The SSL protocol makes it possible to;
Digest Authentication is used to authenticate web applications running Internet Information Services. The Digest Access protocol employs challenge-response mechanisms for applications using HTTP or Simple Authentication Security Layers Communication (SASL).
Trivestgroup is a Nigerian Security Company specialized in Authentication servers and protocols suitable for all organizations. Contact trivestgroup on +234-802-230-6494 or forward a mail to [email protected] for your security risk assessment today.