Please enable JavaScript.
Coggle requires JavaScript to display documents.
Authentication and Authorization 2 - Coggle Diagram
Authentication and
Authorization 2
once application, has been developed and deployed.
Then need to configure who has access
Identification and Authentication,
Authorization, and Account (AAA)
AAA
aka
Three As
or
Triple As
Overall Process of
AAA
Identification
Present an Identity
Identity can be
presented by
user or device
Identity can be in
different forms
such as,
username, process ID,
smart card or
some other unique identifier
So basically you're are
this person/user
or this device
1 more item...
Proper Identification,
helps to protect organizations
assets
helps to maintain
CIA
(Confidentiality, Integrity and Availability
)
maintain CIA
and protect assets
by using different validation and identification
technologies
Break it down by
Components
Core Components
Device that wants
access
aka this what
presents its
Identifier
call this
the
Client
Once
Client/credentials are
authenticated
check for authorization
happens
1 more item...
Multifactor Authentication
so basically
multiple factors
to use for Authentication
so factor is a means
or method for
authentication.
a way to
identify yourself
having more than one
factor, means
stronger security
so rather than just a password,
you include something additional
to pass authentication
Common
Authentication Factors
Something you know
Authentication
Basically the standard or
typical authentication factor
1 more item...
Something you have
Something you do
Somewhere you are
Something you are
additional authentication
factor has to match value
of the business
aka it has to be
useful for the business
otherwise it can be
extra work, aka
more admin overhead and
difficult for users to access
1 more item...