Multifactor Authentication and Password Security

0.0(0)
studied byStudied by 0 people
GameKnowt Play
learnLearn
examPractice Test
spaced repetitionSpaced Repetition
heart puzzleMatch
flashcardsFlashcards
Card Sorting

1/17

flashcard set

Earn XP

Description and Tags

Vocabulary flashcards covering key terms and concepts from the lecture on MFA, password weaknesses, and attack types.

Study Analytics
Name
Mastery
Learn
Test
Matching
Spaced

No study sessions yet.

18 Terms

1
New cards

Multifactor Authentication (MFA)

Authentication using at least two independent factors from different categories (knowledge, possession, inherence, action, or location).

2
New cards

Knowledge Factor (Something You Know)

A factor based on information you know, such as a username, password, PIN, or security answers.

3
New cards

Possession Factor (Something You Have)

A factor based on something you physically possess, such as a smart card, RSA key fob, or RFID badge.

4
New cards

Inherence Factor (Something You Are)

A biometric factor based on unique physical traits, like fingerprints, retina/iris patterns, or voiceprint.

5
New cards

Action Factor (Something You Do)

A factor based on user actions, such as the way you sign, a drawn pattern, or a specific pass phrase.

6
New cards

Location Factor (Somewhere You Are)

A factor based on location, using geotagging (GPS) or geofencing to verify device location.

7
New cards

Geotagging

Authentication based on GPS coordinates to confirm where a user/device is.

8
New cards

Geofencing

Defining a geographic boundary and triggering alerts if a device leaves the allowed area.

9
New cards

Two-Factor Authentication (2FA)

A form of MFA that requires two distinct factors, such as a password plus a token.

10
New cards

Password

A secret string used to verify identity; weaknesses include unchanged default credentials, common words, and short length.

11
New cards

Default Credentials

Default usernames and passwords shipped with devices that are easy to guess if not changed.

12
New cards

Dictionary Attack

Cracking passwords by iterating words or phrases from a list (attacker’s dictionary), often with substitutions.

13
New cards

Brute Force Attack

Trying every possible password combination until success; longer passwords dramatically increase the time to crack.

14
New cards

Hybrid Attack

A combination of dictionary and brute-force methods using a custom keyword list to speed cracking.

15
New cards

RSA Key Fob

A small device that generates rotating codes used as a possession factor in login.

16
New cards

Smart Card

A physical card holding a digital certificate used as a possession factor (often with a PIN).

17
New cards

RFID Badge

A badge with an RFID tag used as a possession factor for authentication.

18
New cards

Password Strength Guidelines

Use a long, complex password with uppercase, lowercase, numbers, and symbols; a minimum of 12 characters is recommended.