Authentication

The process or action of verifying the identity of a user or process to be true, genuine, or valid.

Authentication

Authentication is the process by which a claimed identity is verified, and access permissions are confirmed before access is granted.

User authentication can be achieved by various means, including biometrics, cryptographic tokens, software tokens, passphrases, passwords and smartcards.

Factors of authentication

Authentication mechanisms are invariably described in terms of factors of authentication as follows:

  1. the possession factor something you have such as a token, RFID card or smartcard

  2. the knowledge factor something you know such as a PIN, One-Time Password

  3. the inherence factor something you are such as fingerprint scans, facial recognition or voice recognition

Multi-factor Authentication (MFA)

Multi-Factor Authentication (MFA) verifies a user’s identity by requiring multiple credentials, which may be of the same factor or type. Additional authenticators increase attack resistance and reduce risk of unauthorised access.

Two-Factor Authentication (2FA)

2FA requires two elements from any of the three factors of authentication and with the second factor from a different group to the first factor selected.

Commonly used two 2FA schemes are combinations of physical presence, a token and a PIN/Password.  

Related links