| Computer security authentication means | | | | independent ways to establish identity and |
| verifying the identity of a user logging onto | | | | privileges. The method of using more than one |
| a network. Passwords, digital certificates, | | | | factor of authentication is also called |
| smart cards and biometrics can be used to | | | | strong authentication. This contrasts with |
| prove the identity of the user to the | | | | traditional password authentication, |
| network. Computer security authentication | | | | requiring only one factor in order to gain |
| includes verifying message integrity, e-mail | | | | access to a system. Password is a secret word |
| authentication and MAC (Message | | | | or code used to serve as a security measure |
| Authentication Code), checking the integrity | | | | against unauthorized access to data. It is |
| of a transmitted message. There are human | | | | normally managed by the operating system or |
| authentication, challenge-response | | | | DBMS. However, a computer can only verify the |
| authentication, password, digital signature, | | | | legality of the password, not the legality of |
| IP spoofing and biometrics. | | | | the user. |
| | | | |
| Human authentication is the verification that | | | | The two major applications of digital |
| a person initiated the transaction, not the | | | | signatures are for setting up a secure |
| computer. Challenge-response authentication | | | | connection to a website and verifying the |
| is an authentication method used to prove the | | | | integrity of files transmitted. IP spoofing |
| identity of a user logging onto the network. | | | | refers to inserting the IP address of an |
| When a user logs on, the network access | | | | authorized user into the transmission of an |
| server (NAS), wireless access point or | | | | unauthorized user in order to gain illegal |
| authentication server creates a challenge, | | | | access to a computer system. |
| typically a random number sent to the client | | | | |
| machine. The client software uses its | | | | Biometrics is a more secure form of |
| password to encrypt the challenge through an | | | | authentication than typing passwords or even |
| encryption algorithm or a one-way hash | | | | using smart cards that can be stolen. |
| function and sends the result back to the | | | | However, some ways have relatively high |
| network. This is the response. | | | | failure rates. For example, fingerprints can |
| | | | be captured from a water glass and fool |
| Two- factor authentication requires two | | | | scanners. |