2021년 2월 17일 (수) 08:33에 Pythagoras0님의 편집

2021-02-17T08:33:01Z

Pythagoras0: /* 메타데이터 */ 새 문단

2020-12-26T12:36:08Z

메타데이터: 새 문단

Pythagoras0: /* 노트 */ 새 문단

2020-12-18T00:52:06Z

노트: 새 문단

새 문서

== 노트 ==

# Authentication is the process of determining whether someone or something is, in fact, who or what it declares itself to be.<ref name="ref_4e02">[https://searchsecurity.techtarget.com/definition/authentication Definition from WhatIs.com]</ref>
# Many companies use authentication to validate users who log into their websites.<ref name="ref_4e02" />
# Companies also use authentication to enable remote employees to securely access their applications and networks.<ref name="ref_4e02" />
# Since this type of authentication relies on just one authentication factor, it is a type of single-factor authentication.<ref name="ref_4e02" />
# Authentication confirms that users are who they say they are.<ref name="ref_2c85">[https://www.okta.com/identity-101/authentication-vs-authorization/ Authentication vs. Authorization]</ref>
# Authentication is the act of validating that users are whom they claim to be.<ref name="ref_2c85" />
# In secure environments, authorization must always follow authentication.<ref name="ref_2c85" />
# The need for authentication started with computers and as technology evolved and networks became more common, it gained more importance.<ref name="ref_99b5">[https://link.springer.com/10.1007%2F978-1-4419-5906-5_772 Authentication]</ref>
# The oldest and simplest method to provide authentication is password login.<ref name="ref_99b5" />
# As communication systems are becoming more sophisticated, more rigorous schemes are needed to achieve authentication.<ref name="ref_99b5" />
# Multi-factor authentication (MFA) is a method of logon verification where at least two different factors of proof are required.<ref name="ref_ae93">[https://www.globalknowledge.com/us-en/resources/resource-library/articles/the-three-types-of-multi-factor-authentication-mfa/ The Three Types of Multi-Factor Authentication(MFA)]</ref>
# MFA is also referred to as 2FA, which stands for two-factor authentication.<ref name="ref_ae93" />
# By combining two or three factors from these three categories, a multi-factor authentication is crafted.<ref name="ref_ae93" />
# Multi-factor authentication is preferred, as it is much more difficult for an intruder to overcome.<ref name="ref_ae93" />
# At its core, Laravel's authentication facilities are made up of "guards" and "providers".<ref name="ref_2e86">[https://laravel.com/docs/8.x/authentication The PHP Framework For Web Artisans]</ref>
# Your application's authentication configuration file is located at config/auth.php .<ref name="ref_2e86" />
# First, consider how authentication works.<ref name="ref_2e86" />
# Laravel includes built-in authentication and session services which are typically accessed via the Auth and Session facades.<ref name="ref_2e86" />
# There is a growing demand for different types of user authentication technologies for both online and in physical systems.<ref name="ref_2b4e">[https://www.idrnd.ai/5-authentication-methods-that-can-prevent-the-next-breach/ User Authentication Methods & Technologies to Prevent Breach]</ref>
# Authentication is the process of identifying users that request access to a system, network, or device.<ref name="ref_2b4e" />
# User authentication is a method that keeps unauthorized users from accessing sensitive information.<ref name="ref_2b4e" />
# Certificate-based authentication technologies identify users, machines or devices by using digital certificates.<ref name="ref_2b4e" />
# The second type of authentication is comparing the attributes of the object itself to what is known about objects of that origin.<ref name="ref_7dfd">[https://en.wikipedia.org/wiki/Authentication Authentication]</ref>
# Certificates can, however, also be forged, and the authentication of these poses a problem.<ref name="ref_7dfd" />
# Currency and other financial instruments commonly use this second type of authentication method.<ref name="ref_7dfd" />
# The third type of authentication relies on documentation or other external affirmations.<ref name="ref_7dfd" />
# In computing, authentication is the process of verifying the identity of a person or device.<ref name="ref_0fed">[https://techterms.com/definition/authentication Authentication Definition]</ref>
# While a username/password combination is a common way to authenticate your identity, many other types of authentication exist.<ref name="ref_0fed" />
# Biometrics may also be used for authentication.<ref name="ref_0fed" />
# Two-factor authentication (also "2FA") typically requires a correct login plus another verification check.<ref name="ref_0fed" />
# Providing for multiple primary factors, and/or enforcing more than one factor during authentication, are ways that you can provide both.<ref name="ref_6343">[https://auth0.com/docs/architecture-scenarios/implementation/b2b/b2b-authentication Authentication]</ref>
# : SPA Example to learn about the differences between authentication, authorization, and access control.<ref name="ref_6343" />
# Understand when and why you might use each type of authentication method: first factors, second factors, and multi-factor.<ref name="ref_6343" />
# However you end up provisioning the users for your database connection, the authentication of those users is quite similar.<ref name="ref_6343" />
# Authentication is the process of recognizing a user’s identity.<ref name="ref_e0ef">[https://economictimes.indiatimes.com/definition/authentication What is Authentication? Definition of Authentication, Authentication Meaning]</ref>
# Authentication process can be described in two distinct phases - identification and actual authentication.<ref name="ref_e0ef" />
# Usually, authentication by a server entails the use of a user name and password.<ref name="ref_9a0e">[https://www.bu.edu/tech/about/security-resources/bestpractice/auth/ Understanding Authentication, Authorization, and Encryption : TechWeb : Boston University]</ref>
# Authentication does not determine what tasks the individual can do or what files the individual can see.<ref name="ref_9a0e" />
# Authentication, authorization, and encryption are used in every day life.<ref name="ref_9a0e" />
# Authentication should be used whenever you want to know exactly who is using or viewing your site.<ref name="ref_9a0e" />
# The Django authentication system handles both authentication and authorization.<ref name="ref_4855">[https://docs.djangoproject.com/en/3.1/topics/auth/ User authentication in Django]</ref>
# Briefly, authentication verifies a user is who they claim to be, and authorization determines what an authenticated user is allowed to do.<ref name="ref_4855" />
# Here the term authentication is used to refer to both tasks.<ref name="ref_4855" />
# Authentication is the process of verifying the identity of a client.<ref name="ref_bb21">[https://docs.mongodb.com/manual/core/authentication Authentication — MongoDB Manual]</ref>
# Although authentication and authorization are closely connected, authentication is distinct from authorization.<ref name="ref_bb21" />
# Authentication Mechanisms¶ MongoDB supports a number of authentication mechanisms that clients can use to verify their identity.<ref name="ref_bb21" />
# See Internal/Membership Authentication for more information.<ref name="ref_bb21" />
# It supports authentication using passwords, phone numbers, popular federated identity providers like Google, Facebook and Twitter, and more.<ref name="ref_a899">[https://firebase.google.com/docs/auth Firebase Authentication]</ref>
# To sign a user into your app, you first get authentication credentials from the user.<ref name="ref_a899" />
# This page provides an overview of authentication in Google Cloud's platform for application developers.<ref name="ref_3bcf">[https://cloud.google.com/docs/authentication Authentication overview]</ref>
# Important: This page does not cover authentication for non-Google Cloud APIs, such as the Google Maps Platform APIs.<ref name="ref_3bcf" />
# Access control for Google Cloud APIs encompasses authentication, authorization, and auditing.<ref name="ref_3bcf" />
# This page focuses on authentication.<ref name="ref_3bcf" />
# When using bearer token authentication from an http client, the API server expects an Authorization header with a value of Bearer THETOKEN .<ref name="ref_470b">[https://kubernetes.io/docs/reference/access-authn-authz/authentication/ Authenticating]</ref>
# In a model where every request is stateless this provides a very scalable solution for authentication.<ref name="ref_470b" />
# --authentication-token-webhook-cache-ttl how long to cache authentication decisions.<ref name="ref_470b" />
# TokenReview" , "status": { "authenticated": false , # Optionally include details about why authentication failed.<ref name="ref_470b" />
# For resiliency, we recommend that you require users to register multiple authentication methods.<ref name="ref_dbd9">[https://docs.microsoft.com/en-us/azure/active-directory/authentication/concept-authentication-methods Authentication methods and features - Azure Active Directory]</ref>
# When you deploy features like Azure AD Multi-Factor Authentication in your organization, review the available authentication methods.<ref name="ref_dbd9" />
# The following table outlines the security considerations for the available authentication methods.<ref name="ref_dbd9" />
# To review what authentication methods are in use, see Azure AD Multi-Factor Authentication authentication method analysis with PowerShell.<ref name="ref_dbd9" />
# The way we ensure this data is secured for developers and users alike is through authentication.<ref name="ref_5e0f">[https://developer.twitter.com/en/docs/authentication/overview Overview]</ref>
# Most developers will not need to work with the details of authentication as Twitter client libraries already implement the protocol.<ref name="ref_5e0f" />
# Your Duo administrator may have limited which authentication methods you can use to log in.<ref name="ref_cdaf">[https://guide.duo.com/prompt Guide to Two-Factor Authentication · Duo Security]</ref>
# If this policy is enforced then you won't be able to complete Duo authentication from your personal device.<ref name="ref_cdaf" />
# It is also helpful to remember that OAuth is about authorization in particular and not directly about authentication.<ref name="ref_e295">[https://www.csoonline.com/article/3216404/what-is-oauth-how-the-open-authorization-framework-works.html What is OAuth? How the open authorization framework works]</ref>
# Authorization is the process of letting a subject access resources after a successful authentication, oftentimes somewhere else.<ref name="ref_e295" />
# After authentication, the client is asked to approve the authorization transaction to the second website.<ref name="ref_e295" />
# The first website gives the access token to the second website as proof of authentication on behalf of the user.<ref name="ref_e295" />
# The value "auth" indicates authentication; the value "auth-int" indicates authentication with integrity protection; see the Franks, et al.<ref name="ref_ca0c">[https://tools.ietf.org/html/rfc2617 HTTP Authentication: Basic and Digest Access Authentication]</ref>
# The transactions for proxy authentication are very similar to those already described.<ref name="ref_ca0c" />
# 4 Security Considerations 4.1 Authentication of Clients using Basic Authentication Franks, et al.<ref name="ref_ca0c" />
# 4.2 Authentication of Clients using Digest Authentication Franks, et al.<ref name="ref_ca0c" />
# ”myPay’s new two-factor authentication meets the IRS standard to ensure accounts are only accessible to a verifiable account owner.<ref name="ref_8840">[https://www.dfas.mil/mypayinfo/2fa/ Two-Factor Authentication]</ref>
# This authentication scheme uses Django's default session backend for authentication.<ref name="ref_ee72">[https://www.django-rest-framework.org/api-guide/authentication/ Django REST framework]</ref>
# If authentication is not attempted, return None .<ref name="ref_ee72" />
# If authentication is attempted but fails, raise a AuthenticationFailed exception.<ref name="ref_ee72" />
# JSON Web Token is a fairly new standard which can be used for token-based authentication.<ref name="ref_ee72" />
# If your app requires authentication, use Sign in with Apple to give people a simple and secure way to sign in.<ref name="ref_5e21">[https://developer.apple.com/design/human-interface-guidelines/ios/user-interaction/authentication/ Human Interface Guidelines]</ref>
# Explain the benefits of authentication and how to sign up for your service.<ref name="ref_5e21" />
# Face ID and Touch ID are secure, familiar authentication methods that people trust.<ref name="ref_5e21" />
# A user provides an authentication method and the associated service makes a request to the associated daemon.<ref name="ref_311c">[https://source.android.com/security/authentication Android Open Source Project]</ref>
# Regardless of version, biometric authentication occurs asynchronously after the request is sent.<ref name="ref_311c" />
# For example, throttling of login attempts and authentication against third parties (e.g. OAuth).<ref name="ref_39e4">[https://developer.mozilla.org/en-US/docs/Learn/Server-side/Django/Authentication Django Tutorial Part 8: User authentication and permissions - Learn web development]</ref>
# We'll use the authentication/permissions to display lists of books that have been borrowed for both users and librarians.<ref name="ref_39e4" />
# However, in this article, we're going to use Django's "stock" authentication views and forms for our login and logout pages.<ref name="ref_39e4" />
# From the Authentication and Authorisation section, you can click the Users or Groups links to see their existing records.<ref name="ref_39e4" />
# A user authentication policy may be used to help ensure that only the intended audience is accessing certain assets in your organization.<ref name="ref_8074">[https://www.cisco.com/c/en/us/products/security/identity-services-engine/what-is-user-authentication-policy.html What Is a User Authentication Policy?]</ref>
# User authentication is a process that allows a device to verify the identify of someone who connects to a network resource.<ref name="ref_ae66">[https://www.watchguard.com/training/fireware/82/authent2.htm What is User Authentication?]</ref>
# Authentication is very important when you use dynamic IP addressing (DHCP) for computers on the trusted or optional network.<ref name="ref_ae66" />
# With WatchGuard® System Manager, you can configure authentication on a per policy basis.<ref name="ref_ae66" />
# Authentication is a way to ascertain that a user is who they claim to be.<ref name="ref_a5b3">[https://www.enisa.europa.eu/topics/csirts-in-europe/glossary/authentication-methods Authentication Methods]</ref>
# In order to provide a stronger authentication, a system can choose to present two challenges.<ref name="ref_a5b3" />
===소스===
<references />

@@ 97번째 줄: / 97번째 줄: @@
   <references />
-== 메타데이터 ==
+==메타데이터==
 ===위키데이터===
 * ID :  [https://www.wikidata.org/wiki/Q212108 Q212108]

← 이전 판		2020년 12월 26일 (토) 12:36 판
96번째 줄:		96번째 줄:
	===소스===		===소스===
	<references />		<references />
		+
		+	== 메타데이터 ==
		+
		+	===위키데이터===
		+	* ID : [https://www.wikidata.org/wiki/Q212108 Q212108]

인증 - 편집 역사

2021년 2월 17일 (수) 08:33에 Pythagoras0님의 편집

Pythagoras0: /* 메타데이터 */ 새 문단

Pythagoras0: /* 노트 */ 새 문단