SlideShare une entreprise Scribd logo

Date security identifcation and authentication

Télécharger en tant que PPTX, PDF
L
Leo Mark Villar

Date security identifcation and authentication

Technologie
1  sur  22
IDENTIFICATION & AUTHENTICATION
IDENTIFICATION • An assertion of who we are • examples : • Who we claim to be as a person • Who a system claims to be over a network • Who the originating party of an email claims
METHODS OF IDENTIFICATION • Full names • Account numbers • IDs • Usernames • Fingerprints • DNA samples • etc
IDENTIFICATION Who we claim who we are, in many cases, be an information is subject to change. Thus, an unsubstantiated claim of identity is not reliable information on its own.
IDENTITY VERIFICATION • establish a mapping from a person’s/system’s identity to their real life identity • Example : • Show of IDs or other form of identification
FALSIFYING IDENTIFICATION • Methods of identification are subject to change. As such, they are also subject to falsification. • Identity theft is a major concern today occurring due to lack of authentication requirements for many activities in which we engage.
AUTHENTICATION • Set of methods use to establish a claim of identity as being true. • FACTORS • Something you know • Something you are • Something you have • Something you do • Where you are
SOMETHING YOU KNOW • Any information that a person can remember to claim to authenticate who he/she is • Examples : • Passwords, PINs, passphrases • Weak factor since when exposed, this can nullify the uniqueness of our authentication method
SOMETHING YOU ARE • Based on relatively unique physical attributes of an individual often referred to as BIOMETRICS • Examples : • Height, weight, color, fingerprints, retina,
SOMETHING YOU HAVE • Based on possession of an item or device also extending into some logical concepts • Examples : • ATMs, SSS Card, software based security token
SOMETHING YOU DO • Variation of something you are based on actions or behaviors of an individual • Examples : • Handwriting, delay between keystrokes as he types a passphrase
WHERE YOU ARE • Geographically based authentication factor
MULTIFACTOR AUTHENTICATION • The use of two or more factors in determining the identify of a person as true. • Example : • ATM for something you have while PIN for something you know
MUTUAL AUTHENTICATION • Refers to an authentication mechanism in which both parties authenticate each other. • Problems without mutual authentication : IMPERSONATION ATTACK where an attacker inserts himself between the client and the server impersonating the client to the server and the server to the client • Can be used in combination with multifactor authentication
PASSWORDS • One example of a single factor authentication • Passwords must be strong/complex to prevent BRUTE FORCE CRACKING trying every possible combination of characters that the password can be composed of until we tried it all. • Practice good password hygiene. Passwords should not be just anywhere for people to snoop around. • Passwords should not be similar to other user accounts you have to avoid MANUAL SYNCHRONIZATION OF PASSWORD
BIOMETRICS • refers to or metrics related to human characteristics and traits is used in computer science as a form of identification and access control • BIOMETRIC IDENTIFIERS are the distinctive, measurable characteristics used to label and describe individuals
CATEGORIES OF BIOMETRICS • PHYSIOLOGICAL • Anything related to the shape of the body. • Examples: • fingerprint, palm veins, face recognition, DNA, palm print, hand geometry, iris recognition, retina and odor/scent. • BEHAVIORAL • related to the pattern of behavior of a person, • Examples : typing rhythm, voice
FACTORS ASSESSING SUITABILITY OF A BIOMETRICS FOR AUTHENTICATION • Universality • Uniqueness • Permanence • Collectability • Performance • Acceptability • Circumvention
FACTORS ASSESSING SUITABILITY OF A BIOMETRICS FOR AUTHENTICATION • UNIVERSALITY • Find a biometric characteristics in the majority of the people we expect to enroll in the system. • ENROLLMENT – recording a biometric characteristic from the user. • UNIQUENESS • Measure of how unique a particular characteristic is among individuals.
FACTORS ASSESSING SUITABILITY OF A BIOMETRICS FOR AUTHENTICATION • PERMANENCE • Biometric characteristic tested how well it would resists change over time and with advancing age. • COLLECTABILITY • How easy to acquire a characteristic which we can later authenticate the user. • PERFORMANCE • Set of metrics of how well a given system functions • Factors to consider : speed, accuracy and error rate
MEASURING PERFORMANCE OF A BIOMETRIC SYSTEM • FALSE ACCEPTANCE RATE • Occurs when we accept a user whom we should actually have rejected also referred as FALSE POSITIVE • FALSE REJECTION RATE • Problem of rejecting a legitimate user when we should have accepted referred to as FALSE NEGATIVE. • EQUAL ERROR RATE • Balance between the two error types. It is the intersection of False Acceptance Rate and False Rejection Rate. • Used as a measure of the accuracy of biometric system
ISSUES ON BIOMETRIC SYSTEM • Some might be falsified • Privacy in the use of biometrics

Recommandé

Semantic and Sensitivity Aware Location-Privacy Protection for the Internet o...
Semantic and Sensitivity Aware Location-Privacy Protection for the Internet o...Semantic and Sensitivity Aware Location-Privacy Protection for the Internet o...
Semantic and Sensitivity Aware Location-Privacy Protection for the Internet o...berkeragir
 
Cyber Security
Cyber SecurityCyber Security
Cyber SecurityCodewizacademy
 
Cover Letter
Cover LetterCover Letter
Cover LetterRosanne Gamboa
 
Untitled Presentation
Untitled PresentationUntitled Presentation
Untitled Presentationkavita70
 
Fotografia vs dibujo
Fotografia vs dibujoFotografia vs dibujo
Fotografia vs dibujoLUPITA CAMACHO MARTINEZ
 
WordPress Security and Best Practices
WordPress Security and Best PracticesWordPress Security and Best Practices
WordPress Security and Best PracticesRobert Vidal
 
9 keistimewaan bagi orang orang yang selalu shalat tepat waktu
9 keistimewaan bagi orang orang yang selalu shalat tepat waktu9 keistimewaan bagi orang orang yang selalu shalat tepat waktu
9 keistimewaan bagi orang orang yang selalu shalat tepat waktuErman Hidayat
 
Human Action Recognition using Lagrangian Descriptors
Human Action Recognition using Lagrangian DescriptorsHuman Action Recognition using Lagrangian Descriptors
Human Action Recognition using Lagrangian DescriptorsEsra Açar
 

Recommandé

Semantic and Sensitivity Aware Location-Privacy Protection for the Internet o...
Semantic and Sensitivity Aware Location-Privacy Protection for the Internet o...Semantic and Sensitivity Aware Location-Privacy Protection for the Internet o...
Semantic and Sensitivity Aware Location-Privacy Protection for the Internet o...berkeragir
 
Cyber Security
Cyber SecurityCyber Security
Cyber SecurityCodewizacademy
 
Cover Letter
Cover LetterCover Letter
Cover LetterRosanne Gamboa
 
Untitled Presentation
Untitled PresentationUntitled Presentation
Untitled Presentationkavita70
 
Fotografia vs dibujo
Fotografia vs dibujoFotografia vs dibujo
Fotografia vs dibujoLUPITA CAMACHO MARTINEZ
 
WordPress Security and Best Practices
WordPress Security and Best PracticesWordPress Security and Best Practices
WordPress Security and Best PracticesRobert Vidal
 
9 keistimewaan bagi orang orang yang selalu shalat tepat waktu
9 keistimewaan bagi orang orang yang selalu shalat tepat waktu9 keistimewaan bagi orang orang yang selalu shalat tepat waktu
9 keistimewaan bagi orang orang yang selalu shalat tepat waktuErman Hidayat
 
Human Action Recognition using Lagrangian Descriptors
Human Action Recognition using Lagrangian DescriptorsHuman Action Recognition using Lagrangian Descriptors
Human Action Recognition using Lagrangian DescriptorsEsra Açar
 
Authentication Technologies
Authentication TechnologiesAuthentication Technologies
Authentication TechnologiesNicholas Davis
 
Authentication technologies
Authentication technologiesAuthentication technologies
Authentication technologiesNicholas Davis
 
Authenticationtechnologies 120711134100-phpapp01
Authenticationtechnologies 120711134100-phpapp01Authenticationtechnologies 120711134100-phpapp01
Authenticationtechnologies 120711134100-phpapp01Hai Nguyen
 
Authentication(pswrd,token,certificate,biometric)
Authentication(pswrd,token,certificate,biometric)Authentication(pswrd,token,certificate,biometric)
Authentication(pswrd,token,certificate,biometric)Ali Raw
 
Security issues in e commerce
Security issues in e commerceSecurity issues in e commerce
Security issues in e commercesadaf tst
 
Biometric authentication
Biometric authenticationBiometric authentication
Biometric authenticationmahtabrasheed195
 
Electronic Authentication More Than Just A Password
Electronic Authentication More Than Just A PasswordElectronic Authentication More Than Just A Password
Electronic Authentication More Than Just A PasswordNicholas Davis
 
Electronic authentication more than just a password
Electronic authentication more than just a passwordElectronic authentication more than just a password
Electronic authentication more than just a passwordNicholas Davis
 
Basic of Biometrics Technology
Basic of Biometrics Technology Basic of Biometrics Technology
Basic of Biometrics Technology NEHA SINGH
 
Electronic Authentication, More Than Just a Password
Electronic Authentication, More Than Just a PasswordElectronic Authentication, More Than Just a Password
Electronic Authentication, More Than Just a PasswordNicholas Davis
 
Trust elevation-abbie-v1
Trust elevation-abbie-v1Trust elevation-abbie-v1
Trust elevation-abbie-v1Abbie Barbir
 
Pki & personal digital certificates, securing sensitive electronic communicat...
Pki & personal digital certificates, securing sensitive electronic communicat...Pki & personal digital certificates, securing sensitive electronic communicat...
Pki & personal digital certificates, securing sensitive electronic communicat...Nicholas Davis
 
Pki & Personal Digital Certificates, Securing Sensitive Electronic Commun...
Pki & Personal Digital Certificates, Securing Sensitive Electronic Commun...Pki & Personal Digital Certificates, Securing Sensitive Electronic Commun...
Pki & Personal Digital Certificates, Securing Sensitive Electronic Commun...Nicholas Davis
 
INTRODUCTION TO BIOMETRIC.pptx
INTRODUCTION TO BIOMETRIC.pptxINTRODUCTION TO BIOMETRIC.pptx
INTRODUCTION TO BIOMETRIC.pptxRahulSagar79
 
Security audit
Security auditSecurity audit
Security auditNicholas Davis
 
Security Audit
Security AuditSecurity Audit
Security AuditNicholas Davis
 
How Cloud-Based Service Providers Can Integrate Strong Identity and Security
How Cloud-Based Service Providers Can Integrate Strong Identity and SecurityHow Cloud-Based Service Providers Can Integrate Strong Identity and Security
How Cloud-Based Service Providers Can Integrate Strong Identity and SecurityGlobalSign
 
Authentication and session v4
Authentication and session v4Authentication and session v4
Authentication and session v4skimil
 
Identity 3.0 and Oracle
Identity 3.0 and OracleIdentity 3.0 and Oracle
Identity 3.0 and OracleBram van Pelt
 
Identity 3.0 and Oracle at AMIS25
Identity 3.0 and Oracle at AMIS25Identity 3.0 and Oracle at AMIS25
Identity 3.0 and Oracle at AMIS25Getting value from IoT, Integration and Data Analytics
 
Date security security principles
Date security security principlesDate security security principles
Date security security principlesLeo Mark Villar
 
Data security authorization and access control
Data security authorization and access controlData security authorization and access control
Data security authorization and access controlLeo Mark Villar
 

Contenu connexe

Similaire à Date security identifcation and authentication

Authentication Technologies
Authentication TechnologiesAuthentication Technologies
Authentication TechnologiesNicholas Davis
 
Authentication technologies
Authentication technologiesAuthentication technologies
Authentication technologiesNicholas Davis
 
Authenticationtechnologies 120711134100-phpapp01
Authenticationtechnologies 120711134100-phpapp01Authenticationtechnologies 120711134100-phpapp01
Authenticationtechnologies 120711134100-phpapp01Hai Nguyen
 
Authentication(pswrd,token,certificate,biometric)
Authentication(pswrd,token,certificate,biometric)Authentication(pswrd,token,certificate,biometric)
Authentication(pswrd,token,certificate,biometric)Ali Raw
 
Security issues in e commerce
Security issues in e commerceSecurity issues in e commerce
Security issues in e commercesadaf tst
 
Electronic Authentication More Than Just A Password
Electronic Authentication More Than Just A PasswordElectronic Authentication More Than Just A Password
Electronic Authentication More Than Just A PasswordNicholas Davis
 
Electronic authentication more than just a password
Electronic authentication more than just a passwordElectronic authentication more than just a password
Electronic authentication more than just a passwordNicholas Davis
 
Basic of Biometrics Technology
Basic of Biometrics Technology Basic of Biometrics Technology
Basic of Biometrics Technology NEHA SINGH
 
Electronic Authentication, More Than Just a Password
Electronic Authentication, More Than Just a PasswordElectronic Authentication, More Than Just a Password
Electronic Authentication, More Than Just a PasswordNicholas Davis
 
Trust elevation-abbie-v1
Trust elevation-abbie-v1Trust elevation-abbie-v1
Trust elevation-abbie-v1Abbie Barbir
 
Pki & personal digital certificates, securing sensitive electronic communicat...
Pki & personal digital certificates, securing sensitive electronic communicat...Pki & personal digital certificates, securing sensitive electronic communicat...
Pki & personal digital certificates, securing sensitive electronic communicat...Nicholas Davis
 
Pki & Personal Digital Certificates, Securing Sensitive Electronic Commun...
Pki & Personal Digital Certificates, Securing Sensitive Electronic Commun...Pki & Personal Digital Certificates, Securing Sensitive Electronic Commun...
Pki & Personal Digital Certificates, Securing Sensitive Electronic Commun...Nicholas Davis
 
INTRODUCTION TO BIOMETRIC.pptx
INTRODUCTION TO BIOMETRIC.pptxINTRODUCTION TO BIOMETRIC.pptx
INTRODUCTION TO BIOMETRIC.pptxRahulSagar79
 
How Cloud-Based Service Providers Can Integrate Strong Identity and Security
How Cloud-Based Service Providers Can Integrate Strong Identity and SecurityHow Cloud-Based Service Providers Can Integrate Strong Identity and Security
How Cloud-Based Service Providers Can Integrate Strong Identity and SecurityGlobalSign
 
Authentication and session v4
Authentication and session v4Authentication and session v4
Authentication and session v4skimil
 
Identity 3.0 and Oracle
Identity 3.0 and OracleIdentity 3.0 and Oracle
Identity 3.0 and OracleBram van Pelt
 

Similaire à Date security identifcation and authentication (20)

Authentication Technologies
Authentication TechnologiesAuthentication Technologies
Authentication Technologies
 
Authentication technologies
Authentication technologiesAuthentication technologies
Authentication technologies
 
Authenticationtechnologies 120711134100-phpapp01
Authenticationtechnologies 120711134100-phpapp01Authenticationtechnologies 120711134100-phpapp01
Authenticationtechnologies 120711134100-phpapp01
 
Authentication(pswrd,token,certificate,biometric)
Authentication(pswrd,token,certificate,biometric)Authentication(pswrd,token,certificate,biometric)
Authentication(pswrd,token,certificate,biometric)
 
Security issues in e commerce
Security issues in e commerceSecurity issues in e commerce
Security issues in e commerce
 
Biometric authentication
Biometric authenticationBiometric authentication
Biometric authentication
 
Electronic Authentication More Than Just A Password
Electronic Authentication More Than Just A PasswordElectronic Authentication More Than Just A Password
Electronic Authentication More Than Just A Password
 
Electronic authentication more than just a password
Electronic authentication more than just a passwordElectronic authentication more than just a password
Electronic authentication more than just a password
 
Basic of Biometrics Technology
Basic of Biometrics Technology Basic of Biometrics Technology
Basic of Biometrics Technology
 
Electronic Authentication, More Than Just a Password
Electronic Authentication, More Than Just a PasswordElectronic Authentication, More Than Just a Password
Electronic Authentication, More Than Just a Password
 
Trust elevation-abbie-v1
Trust elevation-abbie-v1Trust elevation-abbie-v1
Trust elevation-abbie-v1
 
Pki & personal digital certificates, securing sensitive electronic communicat...
Pki & personal digital certificates, securing sensitive electronic communicat...Pki & personal digital certificates, securing sensitive electronic communicat...
Pki & personal digital certificates, securing sensitive electronic communicat...
 
Pki & Personal Digital Certificates, Securing Sensitive Electronic Commun...
Pki & Personal Digital Certificates, Securing Sensitive Electronic Commun...Pki & Personal Digital Certificates, Securing Sensitive Electronic Commun...
Pki & Personal Digital Certificates, Securing Sensitive Electronic Commun...
 
INTRODUCTION TO BIOMETRIC.pptx
INTRODUCTION TO BIOMETRIC.pptxINTRODUCTION TO BIOMETRIC.pptx
INTRODUCTION TO BIOMETRIC.pptx
 
Security audit
Security auditSecurity audit
Security audit
 
Security Audit
Security AuditSecurity Audit
Security Audit
 
How Cloud-Based Service Providers Can Integrate Strong Identity and Security
How Cloud-Based Service Providers Can Integrate Strong Identity and SecurityHow Cloud-Based Service Providers Can Integrate Strong Identity and Security
How Cloud-Based Service Providers Can Integrate Strong Identity and Security
 
Authentication and session v4
Authentication and session v4Authentication and session v4
Authentication and session v4
 
Identity 3.0 and Oracle
Identity 3.0 and OracleIdentity 3.0 and Oracle
Identity 3.0 and Oracle
 
Identity 3.0 and Oracle at AMIS25
Identity 3.0 and Oracle at AMIS25Identity 3.0 and Oracle at AMIS25
Identity 3.0 and Oracle at AMIS25
 

Plus de Leo Mark Villar

Date security security principles
Date security security principlesDate security security principles
Date security security principlesLeo Mark Villar
 
Data security authorization and access control
Data security authorization and access controlData security authorization and access control
Data security authorization and access controlLeo Mark Villar
 
Date security introduction
Date security introductionDate security introduction
Date security introductionLeo Mark Villar
 
Data security auditing and accountability
Data security auditing and accountabilityData security auditing and accountability
Data security auditing and accountabilityLeo Mark Villar
 
Computer fundamentals-internet p2
Computer fundamentals-internet p2Computer fundamentals-internet p2
Computer fundamentals-internet p2Leo Mark Villar
 
Computer fundamentals-internet p1
Computer fundamentals-internet p1Computer fundamentals-internet p1
Computer fundamentals-internet p1Leo Mark Villar
 

Plus de Leo Mark Villar (12)

Date security security principles
Date security security principlesDate security security principles
Date security security principles
 
Data security authorization and access control
Data security authorization and access controlData security authorization and access control
Data security authorization and access control
 
Date security introduction
Date security introductionDate security introduction
Date security introduction
 
Data security auditing and accountability
Data security auditing and accountabilityData security auditing and accountability
Data security auditing and accountability
 
Web programming
Web programmingWeb programming
Web programming
 
Computer fundamentals-internet p2
Computer fundamentals-internet p2Computer fundamentals-internet p2
Computer fundamentals-internet p2
 
Computer fundamentals-internet p1
Computer fundamentals-internet p1Computer fundamentals-internet p1
Computer fundamentals-internet p1
 
Html
HtmlHtml
Html
 
Team foundation server
Team foundation serverTeam foundation server
Team foundation server
 
Microsoft office 2013
Microsoft office 2013Microsoft office 2013
Microsoft office 2013
 
Sql performance tuning
Sql performance tuningSql performance tuning
Sql performance tuning
 
Angular js
Angular jsAngular js
Angular js
 

Dernier

"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...Fwdays
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsSergiu Bodiu
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brandgvaughan
 
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Wonjun Hwang
 
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsMiki Katsuragi
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfAddepto
 
Artificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptxArtificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptxhariprasad279825
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsRizwan Syed
 
SAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxSAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxNavinnSomaal
 
DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenHervé Boutemy
 
Search Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdfSearch Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdfRankYa
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Patryk Bandurski
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsMemoori
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Commit University
 
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr LapshynFwdays
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationSlibray Presentation
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024BookNet Canada
 
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostLeverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostZilliz
 

Dernier (20)

"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks..."LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
"LLMs for Python Engineers: Advanced Data Analysis and Semantic Kernel",Oleks...
 
DevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platformsDevEX - reference for building teams, processes, and platforms
DevEX - reference for building teams, processes, and platforms
 
WordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your BrandWordPress Websites for Engineers: Elevate Your Brand
WordPress Websites for Engineers: Elevate Your Brand
 
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
Bun (KitWorks Team Study 노별마루 발표 2024.4.22)
 
DMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special EditionDMCC Future of Trade Web3 - Special Edition
DMCC Future of Trade Web3 - Special Edition
 
Vertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering TipsVertex AI Gemini Prompt Engineering Tips
Vertex AI Gemini Prompt Engineering Tips
 
Gen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdfGen AI in Business - Global Trends Report 2024.pdf
Gen AI in Business - Global Trends Report 2024.pdf
 
Artificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptxArtificial intelligence in cctv survelliance.pptx
Artificial intelligence in cctv survelliance.pptx
 
Scanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL CertsScanning the Internet for External Cloud Exposures via SSL Certs
Scanning the Internet for External Cloud Exposures via SSL Certs
 
SAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptxSAP Build Work Zone - Overview L2-L3.pptx
SAP Build Work Zone - Overview L2-L3.pptx
 
DevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache MavenDevoxxFR 2024 Reproducible Builds with Apache Maven
DevoxxFR 2024 Reproducible Builds with Apache Maven
 
Search Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdfSearch Engine Optimization SEO PDF for 2024.pdf
Search Engine Optimization SEO PDF for 2024.pdf
 
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
Integration and Automation in Practice: CI/CD in Mule Integration and Automat...
 
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptxE-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
E-Vehicle_Hacking_by_Parul Sharma_null_owasp.pptx
 
AI as an Interface for Commercial Buildings
AI as an Interface for Commercial BuildingsAI as an Interface for Commercial Buildings
AI as an Interface for Commercial Buildings
 
Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!Nell’iperspazio con Rocket: il Framework Web di Rust!
Nell’iperspazio con Rocket: il Framework Web di Rust!
 
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
"Federated learning: out of reach no matter how close",Oleksandr Lapshyn
 
Connect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck PresentationConnect Wave/ connectwave Pitch Deck Presentation
Connect Wave/ connectwave Pitch Deck Presentation
 
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
Transcript: New from BookNet Canada for 2024: BNC CataList - Tech Forum 2024
 
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage CostLeverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
Leverage Zilliz Serverless - Up to 50X Saving for Your Vector Storage Cost
 

Date security identifcation and authentication

  • 2. IDENTIFICATION • An assertion of who we are • examples : • Who we claim to be as a person • Who a system claims to be over a network • Who the originating party of an email claims
  • 3. METHODS OF IDENTIFICATION • Full names • Account numbers • IDs • Usernames • Fingerprints • DNA samples • etc
  • 4. IDENTIFICATION Who we claim who we are, in many cases, be an information is subject to change. Thus, an unsubstantiated claim of identity is not reliable information on its own.
  • 5. IDENTITY VERIFICATION • establish a mapping from a person’s/system’s identity to their real life identity • Example : • Show of IDs or other form of identification
  • 6. FALSIFYING IDENTIFICATION • Methods of identification are subject to change. As such, they are also subject to falsification. • Identity theft is a major concern today occurring due to lack of authentication requirements for many activities in which we engage.
  • 7. AUTHENTICATION • Set of methods use to establish a claim of identity as being true. • FACTORS • Something you know • Something you are • Something you have • Something you do • Where you are
  • 8. SOMETHING YOU KNOW • Any information that a person can remember to claim to authenticate who he/she is • Examples : • Passwords, PINs, passphrases • Weak factor since when exposed, this can nullify the uniqueness of our authentication method
  • 9. SOMETHING YOU ARE • Based on relatively unique physical attributes of an individual often referred to as BIOMETRICS • Examples : • Height, weight, color, fingerprints, retina,
  • 10. SOMETHING YOU HAVE • Based on possession of an item or device also extending into some logical concepts • Examples : • ATMs, SSS Card, software based security token
  • 11. SOMETHING YOU DO • Variation of something you are based on actions or behaviors of an individual • Examples : • Handwriting, delay between keystrokes as he types a passphrase
  • 12. WHERE YOU ARE • Geographically based authentication factor
  • 13. MULTIFACTOR AUTHENTICATION • The use of two or more factors in determining the identify of a person as true. • Example : • ATM for something you have while PIN for something you know
  • 14. MUTUAL AUTHENTICATION • Refers to an authentication mechanism in which both parties authenticate each other. • Problems without mutual authentication : IMPERSONATION ATTACK where an attacker inserts himself between the client and the server impersonating the client to the server and the server to the client • Can be used in combination with multifactor authentication
  • 15. PASSWORDS • One example of a single factor authentication • Passwords must be strong/complex to prevent BRUTE FORCE CRACKING trying every possible combination of characters that the password can be composed of until we tried it all. • Practice good password hygiene. Passwords should not be just anywhere for people to snoop around. • Passwords should not be similar to other user accounts you have to avoid MANUAL SYNCHRONIZATION OF PASSWORD
  • 16. BIOMETRICS • refers to or metrics related to human characteristics and traits is used in computer science as a form of identification and access control • BIOMETRIC IDENTIFIERS are the distinctive, measurable characteristics used to label and describe individuals
  • 17. CATEGORIES OF BIOMETRICS • PHYSIOLOGICAL • Anything related to the shape of the body. • Examples: • fingerprint, palm veins, face recognition, DNA, palm print, hand geometry, iris recognition, retina and odor/scent. • BEHAVIORAL • related to the pattern of behavior of a person, • Examples : typing rhythm, voice
  • 18. FACTORS ASSESSING SUITABILITY OF A BIOMETRICS FOR AUTHENTICATION • Universality • Uniqueness • Permanence • Collectability • Performance • Acceptability • Circumvention
  • 19. FACTORS ASSESSING SUITABILITY OF A BIOMETRICS FOR AUTHENTICATION • UNIVERSALITY • Find a biometric characteristics in the majority of the people we expect to enroll in the system. • ENROLLMENT – recording a biometric characteristic from the user. • UNIQUENESS • Measure of how unique a particular characteristic is among individuals.
  • 20. FACTORS ASSESSING SUITABILITY OF A BIOMETRICS FOR AUTHENTICATION • PERMANENCE • Biometric characteristic tested how well it would resists change over time and with advancing age. • COLLECTABILITY • How easy to acquire a characteristic which we can later authenticate the user. • PERFORMANCE • Set of metrics of how well a given system functions • Factors to consider : speed, accuracy and error rate
  • 21. MEASURING PERFORMANCE OF A BIOMETRIC SYSTEM • FALSE ACCEPTANCE RATE • Occurs when we accept a user whom we should actually have rejected also referred as FALSE POSITIVE • FALSE REJECTION RATE • Problem of rejecting a legitimate user when we should have accepted referred to as FALSE NEGATIVE. • EQUAL ERROR RATE • Balance between the two error types. It is the intersection of False Acceptance Rate and False Rejection Rate. • Used as a measure of the accuracy of biometric system
  • 22. ISSUES ON BIOMETRIC SYSTEM • Some might be falsified • Privacy in the use of biometrics