Please enable JavaScript.
Coggle requires JavaScript to display documents.
1 - The AAA Model (Authentication, Authorization, Accounting) - Coggle…
1 - The AAA Model
(Authentication, Authorization, Accounting)
Authentication
Something you know == Type 1 authentication factor
Password recommendations
NIST SP 800-63B
Passwords should not expire
Users should not be required to use special characters
Users should be able to copy and paste passwords
Users should be able to use all characters
Password length should be at least eight characters and as many as 64 chars
Password systems should screen passwords
Passwords must be hashed
PCI DSS
Passwords must be at least 12 characters long
Passwords must contain both numeric and alphabetic characters
Passwords expire at least every 90 days
Passwords may not be the same as any of the user's previous four passwords
Something you are == Type 3 authentication factor
Examples
Face scans
Retina scans
Iris scans
Palm scans
Voice pattern recognition
Fingerprints
False Rejection Rate (FRR) == Type 1 error
False Acceptance Rate (FAR) == Type 2 error
Crossover Error Rate (CER) == Equal Error Rate (EER)
Biometric registration
Reference profile == reference tempalte
Enrollment times over 2 minutes are unacceptable
Throughput rate = amount of time the system requires to scan a subject and approve or deny access
Something you have == Type 2 authentication factor
Smartcards
Authenticators
Time-based OTP
Hash-based OTP
Somewhere you are
Context-aware authentication
Location
Time
type of device
Device authentication
Device fingerprinting
identification
Authorization
Accounting
Monitoring
Auditing
Logging