2. Toolbox: Authentication, Access Control, and Cryptography

Chapter topics:

• Authentication, capabilities, and limitations

• The three bases of authentication: knowledge, characteristics, possessions

• Strength of an authentication mechanism

• Implementation of access control

• Employing encryption

• Symmetric and asymmetric encryption

• Message digests

• Signatures and certificates

Just as doctors have stethoscopes and carpenters have measuring tapes and squares, security professionals have tools they use frequently. Three of these security tools are authentication, access control, and cryptography. In this chapter we introduce these tools, and in later chapters we use these tools repeatedly to address a wide range of security issues.

Get Security in Computing now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Security in Computing by Shari Lawrence Pfleeger, Charles P. Pfleeger, Jonathan Margulies

2. Toolbox: Authentication, Access Control, and Cryptography

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly