What is the difference between authentication and
authorization
?
Answer Posted / rahul
An authentication system is how you identify yourself to
the computer. The goal behind an authentication system is
to verify that the user is actually who they say they are.
There are many ways of authenticating a user. Any
combination of the following are good examples.
Password based authentication
Requires the user to know some predetermined quantity
(their password).
Advantages: Easy to impliemnt, requires no special
equipemnt.
Disadvantages: Easy to forget password. User can tell
another user their password. Password can be written down.
Password can be reused.
Device based authentication
Requires the user to posses some item such as a key, mag
strip, card, s/key device, etc.
Advantages: Difficult to copy. Cannot forget password. If
used with a PIN is near useless if stolen.
Disadvantages: Must have device to use service so the user
might forget it at home. Easy target for theft. Still
doesn't actually actively identify the user.
Biometric Authentication
My voice is my passport. Verify me. This is from the movie
sneakers and demonstrates one type of biometric
authentication device. It identifies some physical
charactistic of the user that cannot be seperated from
their body.
Authorization
Once the system knows who the user is through
authentication, authorization is how the system decides
what the user can do.
A good example of this is using group permissions or the
difference between a normal user and the superuser on a
unix system.
Is This Answer Correct ? | 5 Yes | 10 No |
Post New Answer View All Answers
Explain the difference between the registerwellknownservicetype(), registerwellknownclienttype(), registeractivatedservicetype() and registeractivatedclienttype() in .net?
What are static assemblies?
What are the threading types?
Write a example code for remoting?
What is the difference between remoting and webservice?
What is unmanaged code?
Hello, I want to connect a system in LAN and i want to access that.When ever i am moving a mouse in my desktop the similar thing have to happend in the another system in which i have connected. I need coding for this in c# and .NET . any one please help me.It is very urgent to me Advance thanks. my email id:manojkumarchallagundla@gmail.com
define client activated objects (cao)?
What are the advantage of remoting over web services?
When should we choose .net remoting over .net web services?
Define a process?
What does manifest consists?
What is the Difference between CAO and SAO in Remoting.
Is it a good design practice to distribute the implementation to remoting client?
What are the different types of channels used by .net remoting and which is the best one?