authentication of people
play

Authentication of People what you know (passwords) what you have - PowerPoint PPT Presentation

Nov 27, 2023 •419 likes •559 views

people 1 Authentication of People what you know (passwords) what you have (keys) what you are (biometric devices) where you are (physical) October 26, 2000 people 2 Passwords initial password distribution (students)

  1. people 1 Authentication of People � what you know (passwords) � what you have (keys) � what you are (biometric devices) � where you are (physical) October 26, 2000

  2. people 2 Passwords � initial password distribution (students) � limit password guessing ➠ denial-of-service � make pronouncable, add punctuation, numbers � need 64 bits of secret: – 20 random digits – letters, digits, punctuation: 11 characters – pronounceable: 4 bits/character ➠ 16 characters – own password: 2 bits/character ➠ 32 characters October 26, 2000

  3. people 3 Trojan Horses � limit appearance (border, characters, interrupts) � show failed attempts at next successful login � prevent login by user programs October 26, 2000

  4. people 4 Initial Passwords � need to meet root � ATM PIN entry � pre-expired passwords � difficulty: can’t change passwords (locks, Windows’95) October 26, 2000

  5. people 5 Authenticating Tokens � magnetic cards, memory cards (European phone cards) � smart cards: challenge/response � cryptographic calculator: typing, display encrypted time October 26, 2000

  6. people 6 Biometrics – Accuracy False acceptance rate (FAR): The percentage of unauthorised persons accepted in error. False rejection rate (FRR): The percentage of authorised persons who are incorrectly denied acceptance. � one-try � three-try � remove “unstable” population � can adversary select impostors? � identical twins, family members vs. random impostor � fraud: with or without cooperation of Alice? October 26, 2000

  7. people 7 Fingerprints False rejection rate: 1 to 5 % (three tries). False acceptance rate: 0.01 - 0.0001 % (three tries). Vulnerability: Dummy fingers and dead fingers Ease of use: Easy to use, but “suspect” Suitable: Not for people with damaged fingerprints due to daily handling of rough material. Speed: 2 seconds Storage: 800–1203 bytes Stability: change for children October 26, 2000

  8. people 8 Hand Geometry False rejection rate: 0.2 % (one-try) False acceptance rate: 0.2 % (one-try) Vulnerability: difficult without cooperation Suitable: rheumatic hands Speed: < 3 seconds Storage: 9 bytes Stability: change for children, weight gain Use: Kennedy Airport October 26, 2000

  9. people 9 Retinal Scans retinal vascular pattern False rejection rate: 12.4 % (one-try), 0.4 % (three-try); False acceptance rate: 0 Vulnerability: None; false eyes, contact lenses and eye transplants Ease of use: difficult, socially unacceptable Suitable: everyone with eyes Speed: 1.5 seconds; Storage: 40 bytes Stability: very stable; changed by some diseases/injuries October 26, 2000

  10. people 10 Voice Recognition � single phrase ➠ tape recorder � changing phrases ➠ unreliable � background noise � colds � use with public phone October 26, 2000

  11. people 11 Signature � shape and dynamics � some signatures easily faked, some variable � signing surface properties October 26, 2000

  12. people 12 Other Biometrics � keystroke timing ➠ network? � hand veins � finger geometry � facial recognition ➠ perspective October 26, 2000

  13. people 13 Recognizing Machines Detect differences even if “output signal” is the same: � reflective multi-faceted surfaces (ICBMs); � magnetic particles on credit card; � RF spectrum for phones October 26, 2000

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

1 Password-Based Authentication Node A has a secret ( password ): e.g., lisa To

1 Password-Based Authentication Node A has a secret ( password ): e.g., lisa To

Authentication Protocols Guevara Noubir College of Computer and Information Science Northeastern University noubir@ccs.neu.edu Outline Overview of Authentication Systems [Chapter 9] Authentication of People [Chapter 10]

396 views • 17 slides
Authentication of People what you know (passwords) what you have (keys) what you are

Authentication of People what you know (passwords) what you have (keys) what you are

people 1 Authentication of People what you know (passwords) what you have (keys) what you are (biometric devices) where you are (physical) Slide 1 Passwords initial password distribution (students) limit password guessing

305 views • 7 slides
AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is

AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is

SECURITY TOPICS PART 2 AUTHENTICATION AUTHENTICATION Authentication is the process by which you decide that someone is who they say they are and therefore permitted to access the requested resources: getting entrance to a computer lab

833 views • 44 slides
HOST Authentication Overview ECE 525 Authentication Overview Authentication refers to the

HOST Authentication Overview ECE 525 Authentication Overview Authentication refers to the

HOST Authentication Overview ECE 525 Authentication Overview Authentication refers to the process of verifying the identity of the communicating principals to one another Usually sub-divided into Entity authentication Authentication

288 views • 10 slides
Recognize people by the way they type Typing Biometrics Authentication Cybercrime &amp; identity

Recognize people by the way they type Typing Biometrics Authentication Cybercrime &amp; identity

Typing Biometrics Authentication Recognize people by the way they type Typing Biometrics Authentication Cybercrime &amp; identity theft 17 million victims $30 billion / year Typing Biometrics Authentication The way you type is unique Typing

143 views • 10 slides
Authentication Most technical security safeguards have Authentication authentication as a

Authentication Most technical security safeguards have Authentication authentication as a

Authentication Most technical security safeguards have Authentication authentication as a precondition How to authenticate: Something you know Password, Secrets Something you have Smart Card, Token Something you are Biometrie

607 views • 4 slides
Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Cryptography Authentication and Data Integrity Aims of Authentication Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication with Hash Cryptography Functions Authentication with MACs School of

613 views • 27 slides
Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication

Cryptography Authentication and Data Integrity Aims of Authentication Authentication and Data Integrity Authentication with Symmetric Key Encryption Authentication with Hash Cryptography Functions Authentication with MACs School of

1.66k views • 27 slides
A2: Broken Authentication and Session Management But first Authentication, Authorization,

A2: Broken Authentication and Session Management But first Authentication, Authorization,

A2: Broken Authentication and Session Management But first Authentication, Authorization, Sessions Authentication Determining user identity Multiple ways What you know (password) What you have (phone, RSA SecureID, Yubikey)

1.57k views • 28 slides
Web Authentication Thierry Sans Several Methods Local authentication with login and password

Web Authentication Thierry Sans Several Methods Local authentication with login and password

Web Authentication Thierry Sans Several Methods Local authentication with login and password Token-based authentication Third party authentication Local Authentication How to store and verify password? Clear Data can be hacked

615 views • 14 slides
The Authentication Jungle An overview of all sorts of authentication technologies Karol Babioch

The Authentication Jungle An overview of all sorts of authentication technologies Karol Babioch

The Authentication Jungle An overview of all sorts of authentication technologies Karol Babioch Security Engineer kbabioch@suse.de New authentication standards ... 2 Some authentication technologies ... 3 - Authentication theory -

1.28k views • 88 slides
Outline Introduction Authentication Basic authentication mechanisms CS 239

Outline Introduction Authentication Basic authentication mechanisms CS 239

Outline Introduction Authentication Basic authentication mechanisms CS 239 Authentication on a single machine Computer Security Authentication across a network February 21, 2007 Lecture 9 Lecture 9 Page 1 Page 2 CS 236,

302 views • 8 slides
Authentication Protocols Guevara Noubir College of Computer and Information Science Northeastern

Authentication Protocols Guevara Noubir College of Computer and Information Science Northeastern

Authentication Protocols Guevara Noubir College of Computer and Information Science Northeastern University noubir@ccs.neu.edu Outline Overview of Authentication Systems [Chapter 9] Authentication of People [Chapter 10]

809 views • 49 slides
I know who you are, but you can't come in Authentication and single sign-on in the SAS platform

I know who you are, but you can't come in Authentication and single sign-on in the SAS platform

I know who you are, but you can't come in Authentication and single sign-on in the SAS platform Agenda Authentication Inbound authentication Outbound authentication Single Sign-on Definitions Stage Process Method Physical

781 views • 48 slides
HOST PUF-Based Authentication ECE 525 PUF-Based Authentication PUF-based protocols have been

HOST PUF-Based Authentication ECE 525 PUF-Based Authentication PUF-based protocols have been

HOST PUF-Based Authentication ECE 525 PUF-Based Authentication PUF-based protocols have been proposed for applications including: Encryption and authentication For detecting malicious alterations of design components For

645 views • 15 slides
THE STATE OF AUTHENTICATION Chad Spensky Allthenticate OUTLINE Who am I? Authentication

THE STATE OF AUTHENTICATION Chad Spensky Allthenticate OUTLINE Who am I? Authentication

THE STATE OF AUTHENTICATION Chad Spensky Allthenticate OUTLINE Who am I? Authentication overview Current state of Authentication The future of authentication MY JOURNEY 2012-2015 2004-2011 2015-Present 1998-2004 Staff at MIT

453 views • 34 slides
Presidents Fall Address October 14, 2015 Moores Opera House Journey of National

Presidents Fall Address October 14, 2015 Moores Opera House Journey of National

Presidents Fall Address October 14, 2015 Moores Opera House Journey of National Competitiveness 2015 2012 ? 2012 U.S. News and 2011 World Report Princeton Recognized as a 2009 Review National University Carnegie Tier

1k views • 37 slides
Hybrid Format for fall 2020 The class is very big (120+ enrolled), so All lectures virtual over

Hybrid Format for fall 2020 The class is very big (120+ enrolled), so All lectures virtual over

Hybrid Format for fall 2020 The class is very big (120+ enrolled), so All lectures virtual over Zoom All office hours virtual over Zoom (for now) Required in-person component - 1 safe in-person chat with course staff - Details on Piazza soon

508 views • 17 slides
CS 61A Discussion 0 Lost on the Moon Albert Xu Slides: albertxu.xyz/teaching/cs61a/

CS 61A Discussion 0 Lost on the Moon Albert Xu Slides: albertxu.xyz/teaching/cs61a/

CS 61A Discussion 0 Lost on the Moon Albert Xu Slides: albertxu.xyz/teaching/cs61a/ Announcements Make sure youre on Piazza! Most o ffi cial announcements will be there. Attend the lab section matching this one so I can see you again!!

901 views • 62 slides
Agenda Welcome &amp; Introductions Introduction to the program Chris Howard, General

Agenda Welcome &amp; Introductions Introduction to the program Chris Howard, General

Agenda Welcome &amp; Introductions Introduction to the program Chris Howard, General Manager 3 rd grade logistics Guido Buchbinder, 3 rd Grade Director Curriculum overview Chris Howard, General Manager Q &amp; A

660 views • 10 slides
Information Security Identification and authentication Advanced User Authentication II

Information Security Identification and authentication Advanced User Authentication II

Information Security Identification and authentication Advanced User Authentication II 2016-01-29 Amund Hunstad Guest Lecturer, amund@foi.se Agenda for lecture I within this part of the course Background Authentication eID

683 views • 44 slides
Smartphone based Access Control: Adventures in Usability Lujo Bauer Carnegie Mellon Device

Smartphone based Access Control: Adventures in Usability Lujo Bauer Carnegie Mellon Device

Carnegie Mellon Smartphone based Access Control: Adventures in Usability Lujo Bauer Carnegie Mellon Device enabled Authorization Smartphones on a trajectory to win in the market Stand to inherit mobile phone market that

925 views • 51 slides
Distributed Systems On-computer keychain file Need there be more? Smart Cards, Biometrics,

Distributed Systems On-computer keychain file Need there be more? Smart Cards, Biometrics,

Carrying certificates around How do you use your [digital] identity? Install your certificate in browser Distributed Systems On-computer keychain file Need there be more? Smart Cards, Biometrics, &amp; CAPTCHA Paul Krzyzanowski

215 views • 5 slides
Fun IP Prof. Roger Ford Monday, April 25, 2016 Trademarks: Dilution 15 U.S.C. 1125 False

Fun IP Prof. Roger Ford Monday, April 25, 2016 Trademarks: Dilution 15 U.S.C. 1125 False

Fun IP Prof. Roger Ford Monday, April 25, 2016 Trademarks: Dilution 15 U.S.C. 1125 False designations of origin, false descriptions, and dilution forbidden * * * (c) Dilution by blurring; dilution by tarnishment (1) Injunctive relief

737 views • 4 slides

More recommend