Professional Documents
Culture Documents
Identification and Authentication
Identification and Authentication
• The rate at which false negatives and false positives occur is often linked
• Decreasing the rate at which one problem occurs often increase the rate at which the
other problem occurs, and vice-versa
Passwords
• A password is an agreed-upon word, phrase, or set of characters that
is presumed to be known only by the user and system.
• Problem with passwords:
1. they can be lost or forgotten
• by either the user or the system
2 they can be inconvenient to use
• e.g., by requiring users to constantly enter or re-enter passwords
3.they can be shared with or disclosed to another entity
• By either the user or the system
4.they can be revoked
• Revoking a password can have cascading effects throughout a system
Attacking Passwords