June 2017
Intermediate to advanced
338 pages
8h 28m
English
Most authentication approaches start with the premise that there are valid users, usually with different privilege levels associated with them that need access to something. Now, how do we confirm they are who they say they are? These so-called credentials are very much analogous to physical security measures. The right person will both look like who they say they are and hopefully have the appropriate key or answers to a challenge. It used to be that the username and password based authentication was perfectly acceptable, but we are now at the point where this flawed single-factor approach is no longer able to assure us that the client connecting is trustworthy.
In recent years, websites and applications ...
Read now
Unlock full access