DACS 2201 / 09-AUTHENTICATION

0.0(0)
Studied by 0 people
call kaiCall Kai
Locked
learnLearn
examPractice Test
spaced repetitionSpaced Repetition
heart puzzleMatch
flashcardsFlashcards
GameKnowt Play
Card Sorting

1/40

flashcard set

Earn XP

Description and Tags

Vocabulary flashcards based on lecture notes covering authentication factors, types of password attacks, biometric security, and secure authentication protocols such as RADIUS and SAML.

Last updated 4:18 PM on 6/10/26
Name
Mastery
Learn
Test
Matching
Spaced
Call with Kai
Chat

No analytics yet

Send a link to your students to track their progress

41 Terms

1
New cards

Access Control

The process of granting or denying approval to use specific resources.

2
New cards

Triple-A (AAA)

A cybersecurity framework that includes authentication, authorization, and accounting.

3
New cards

Authentication

Validates the credentials of an entity (user) to ensure it is genuine (not an imposter).

4
New cards

Authorization

Grants the user access to certain resources based on a set of permissions.

5
New cards

Accountability

Makes the user responsible by recording the actions taken.

6
New cards

Audit

Verifies what a user has done.

7
New cards

Knowledge factor

An authentication factor based on something that only you know, such as a password or PIN.

8
New cards

Possession factor

An authentication factor based on something you have that nobody else has, such as a bank Card, RFID Card, or cell phone.

9
New cards

Biometrics factor

An authentication factor based on something you are, involving biological characteristics like fingerprints, face expressions, or iris scans.

10
New cards

Attributes

Additional forms of authentication including Geographic Location, Behavior/Activity (e.g., signature, keystroke dynamics), and Other Person's Validation.

11
New cards

Credential Stuffing attack

An attack where an attacker accesses multiple accounts upon knowing one password because the user used the same password for multiple accounts.

12
New cards

Password Guessing

An attack where the attacker attempts guessed passwords at the login prompt.

13
New cards

Shoulder Surfing

An attack where the attacker watches an individual entering a security code on a keypad.

14
New cards

Brute Forcing

An attack where the attacker tries all possible combinations of passwords.

15
New cards

Password Spraying

An attack where the attacker selects one or a few common passwords (like password1 or 123456) and tries them across several user accounts.

16
New cards

Password Dumps

An attack where the attacker steals the passwords stored in a system or a database.

17
New cards

Hash function

A function that takes an input string (message) and encrypts it to produce a hash result (output or digest).

18
New cards

Digests

Irreversible hash results that cannot be decrypted.

19
New cards

Offline Brute Force Attack

A digest attack where the password list is generated by trying all possible combinations of characters.

20
New cards

Dictionary Attack

A digest attack where the list is generated from commonly used words in a dictionary.

21
New cards

Password Collection Attack

A digest attack where the list is taken from a previous dump of passwords in clear text.

22
New cards

Rainbow Table Attack

An attack using a compressed list of passwords that are related and organized in a sequence.

23
New cards

Salting

A technique where a random string (salt) is generated and concatenated to the password before hashing it.

24
New cards

Key Stretching

The use of specialized password hashing algorithms like bcrypt, PBKDF2, and Argon2 that are intentionally designed to be slower.

25
New cards

Entropy

A measure of the strength of a password.

26
New cards

Number of possible passwords formula

(h)h( h )^h

27
New cards

Card Skimming attack

An attack using a small device that fits into a card reader and reads information stored on a card's magnetic strip to clone it.

28
New cards

Windowed Tokens

Also called key fobs, these use an algorithm to generate a one-time password (OTP) usually valid for 3060seconds30-60 \, \text{seconds}.

29
New cards

Security Keys

Small devices inserted into a USB port that have a pair of public/private keys burned into them to authenticate the user.

30
New cards

Retinal Scan

Maps the unique pattern of a retina by directing a beam of low-energy infrared light (IR) into a person's eye.

31
New cards

Fingerprint Scan

Takes a picture of the ridges and valleys in a fingerprint and compares it with the image on file.

32
New cards

Iris Scan

Uses a standard webcam to identify the unique characteristics of the iris.

33
New cards

Facial Recognition

Uses landmarks called nodal points on human faces for authentication.

34
New cards

False negative

A biometric system error where an imposter is accepted as genuine.

35
New cards

False positive

A biometric system error where a legitimate user is rejected.

36
New cards

Cognitive Biometrics

Also called knowledge-based authentication, it acquires bio signals or responses to external stimulus, such as Picture Password.

37
New cards

Single Sign-On (SSO)

A technology that uses one authentication credential to access multiple accounts or applications.

38
New cards

RADIUS (Remote Authentication Dial In User Service)

A service that authenticates users by sending requests from a client (like a wireless AP) to a centralized server.

39
New cards

SAML (Security Assertion Markup Language)

An XML standard that allows secure web domains to exchange user authentication and authorization data.

40
New cards

Directory Service

A database stored on the network that contains information about users and network devices.

41
New cards

Kerberos

A technology that uses encryption and authentication when a user attempts to access a network service.