Exam 16: User Authentication

Characteristics, called __________ , that are unique or almost unique to the individual, include fingerprint, voice, handwriting, and face.

A ticket is encrypted with a secret key known only to the AS and the __________ .

the overall scheme of Kerberos is that of a trusted third party authentication service that uses a protocol based on a proposal by __________ .

A Kerberos __________ is a set of managed nodes that share the same Kerberos database.

the __________ approach is unsuitable for a connectionless type of application because it requires the overhead of a handshake before any connectionless transmission, effectively negating the chief characteristic of a connectionless transaction.

A Kerberos _____ is a set of managed nodes that share the same Kerberos database.

In order to convince a server that a user is authentic, the authentication server creates a __________ that is encrypted using the secret key shared by the AS and that server that contains the user's ID and network address and the server's ID.

the __________ is unsuitable for a connectionless type of application because it requires the overhead of a handshake before any connectionless transmission, effectively negating the chief characteristic of a connectionless transaction.

the specific items used during authentication, such as a password or hardware token, are referred to as __________ .

Subscriber is a subject whose identity is to be verified using one or more authentication protocols.

there are four general means, or authentication factors, of authenticating a user's identity, which can be used alone or in combination.

Examples of dynamic biometrics include recognition by fingerprint, retina, and face.

________ is a procedure that allows communicating parties to verify that the contents of a received message have not been altered and that the source is authentic.

In an unprotected network environment any client can apply to any server for service.the obvious security risk of this is __________ .

A centralized, automated approach to provide enterprise-wide access to resources by employees and other authorized individuals with a focus of defining an identity for each user, associating attributes with the identity, and enforcing a means by which a user can verify identity is __________ .

Kerberos relies exclusively on __________ .

the challenge-response approach is unsuitable for a connectionless type of application beause it requires the overhead of a handshake before any connectionless transmission.

the authenticator that is used as a possession factor is a __________ .

Kerberos relies exclusively on symmetric encryption.

_________ establishes that a subject is who they claim to be to a stated level of certitude.