Authentication is the process of a user proving an identity that he or she has claimed. A common way this is done is by having a user provide a logon name to profess an identity and then using a password for authentication. Authentication proves that the person who is attempting to log on is who the person claims to be.

imageEXAM TIP Identification and authentication are the two primary controls used by most access control systems. The user professes an identity and then proves his or her identity with authentication.

For example, Figure 2-2 shows a challenge screen where a user must provide the credentials of an account. The user name ...

Get SSCP Systems Security Certified Practitioner All-in-One Exam Guide now with O’Reilly online learning.

O’Reilly members experience live online training, plus books, videos, and digital content from 200+ publishers.