Authentication

6.4 Compare and contrast authentication, authorization, accounting and non-repudiation concepts.

📘CompTIA ITF+ (FC0-U61)

1. Single-Factor Authentication (SFA)

  • Definition: Uses only one method to verify identity.
  • Common examples in IT:
    • Password: The user types a secret word or phrase.
    • PIN (Personal Identification Number): A numeric code, often used with devices or accounts.
  • Strengths: Simple and quick.
  • Weaknesses: Less secure because if the password or PIN is stolen, access is compromised.

2. Multi-Factor Authentication (MFA)

  • Definition: Requires two or more authentication factors. It adds extra layers of security.
  • Why it’s stronger: Even if one factor is stolen (like your password), the attacker still cannot access the system without the second factor.

3. Types of Authentication Factors

Authentication factors are generally divided into three main categories:

  1. Something you know:
    • Password
    • PIN
    • Security questions
  2. Something you have:
    • One-time password (OTP) sent via email or SMS
    • Software token (an app generating a code, e.g., Google Authenticator)
    • Hardware token (a physical device that generates a temporary code)
  3. Something you are (biometrics):
    • Fingerprint scanner
    • Facial recognition
    • Iris or retina scan
  4. Optional / advanced factors:
    • Specific location: Only allows login from certain places (like the office network).
    • Time-based restrictions: Only access during certain hours.

Example in IT environment:

  • Logging into a corporate email might require:
    • A password (something you know)
    • A one-time code sent to your phone (something you have)

4. Single Sign-On (SSO)

  • Definition: Lets a user log in once and access multiple systems or applications without entering credentials again.
  • How it works in IT:
    • The user logs into the company portal (like Microsoft 365 portal).
    • They can then access email, file storage, and other apps without logging in again.
  • Benefits:
    • Reduces password fatigue
    • Increases security by centralizing authentication
  • Risks:
    • If the single login is compromised, multiple systems can be accessed.

Key Points for Exam

  1. Authentication is about verifying identity.
  2. Single-factor uses one method (like password or PIN).
  3. Multi-factor combines two or more methods for stronger security.
  4. Authentication factors include:
    • Something you know
    • Something you have
    • Something you are
    • Optional: location, time
  5. Single sign-on allows one login for multiple systems.

Tip for remembering:
Think “KNOW + HAVE + ARE” – these are the main authentication factors. Add SSO to make life easier for users while still keeping things secure.

Buy Me a Coffee

Powered by
Necessary cookies enable essential site features like secure log-ins and consent preference adjustments. They do not store personal data.
None
Functional cookies support features like content sharing on social media, collecting feedback, and enabling third-party tools.
None
Analytical cookies track visitor interactions, providing insights on metrics like visitor count, bounce rate, and traffic sources.
None
Advertisement cookies deliver personalized ads based on your previous visits and analyze the effectiveness of ad campaigns.
None
Powered by