Professional Documents
Culture Documents
Availability
Accountability
• The term
accountability
refers to the
acceptance of
responsibility for
honest and ethical
conduct towards
others.
Accountability
• The accountability service does not protect against
attacks by itself. It must be used in conjunction
with other services to make them more effective.
• Accountability by itself is the worst part of
security; it adds complications without adding
value.
• Accountability adds cost and it reduces the
usability of a system.
• However, without the accountability service, both
integrity and confidentiality mechanisms would
fail.
Identification and Authentication
• Identification and authentication (I&A)
serves two purposes.
• First, the I&A function identifies the
individual who is attempting to perform a
function.
• Second, the I&A function proves that the
individual is who he or she claims to be.
Identification and Authentication
Authentication can be accomplished by using any
combination of three things: