lecture 7a

Question 2

What is “Somewhere you are” in types of authentication credentials?

Answer 2

Restricted location for example a restricted military base

Question 3

What does “Something you are” mean in authentication?

Answer 3

Unique biological characteristic that cannot be changed like a fingerprint

Question 4

What is an example of “Something you have” as an authentication credential?

Answer 4

Possession of an item nobody else has like Rikers RFID card

Question 5

What does “Someone you know” authentication involve?

Answer 5

Validated by another person for example Li knows Peyton

Question 6

What does “Something you exhibit” refer to in authentication?

Answer 6

Genetically determined characteristic like Peytons flaming red hair

Question 7

What is meant by “Something you can do” in authentication?

Answer 7

Performing an activity that cannot be exactly copied like Paulos signature

Question 8

What is “Something you know” in authentication credentials?

Answer 8

Knowledge that nobody else possesses like a combination to unlock a locker

Question 9

What is the most common type of IT authentication today?

Answer 9

Passwords

Question 10

Why are passwords considered weak protection?

Answer 10

Because they rely on human memory which is limited and users often create weak passwords

Question 11

What makes a password strong?

Answer 11

Being long complex and unique

Question 12

What is password spraying?

Answer 12

An attack using a few common passwords against many user accounts

Question 13

What is a brute force attack?

Answer 13

Trying every possible password combination against encrypted password files

Question 14

What is a rule attack on passwords?

Answer 14

Using statistical analysis of stolen passwords to create masks that crack many passwords

Question 15

What is a dictionary attack?

Answer 15

Comparing digests of common dictionary words against stolen password hashes

Question 16

What advantage do rainbow tables have in password attacks?

Answer 16

They are faster than dictionary attacks use less memory and can be reused

Question 17

What are password collections?

Answer 17

Large stolen datasets of real user passwords used for cracking

Question 18

What is multifactor authentication MFA?

Answer 18

Using more than one type of authentication credential for login

Question 19

What is two-factor authentication 2FA?

Answer 19

Using exactly two types of authentication credentials together

Question 20

What is a smart card in authentication?

Answer 20

A card with integrated chip barcode magnetic strip and picture used for access

Question 21

What is card cloning?

Answer 21

Unauthorized duplication of smart cards usually by skimming

Question 22

What is a windowed token?

Answer 22

A device that generates a one-time password OTP for limited time use

Question 23

What is a time-based one-time password TOTP?

Answer 23

A code generated by algorithm changing every 30 to 60 seconds

Question 24

What is an HMAC-based one-time password HOTP?

Answer 24

An event-driven code that changes when a specific event occurs

Question 25

What is a security key in authentication?

Answer 25

A USB or Lightning dongle inserted or held near an endpoint for authentication

Question 26

What is attestation in security keys?

Answer 26

A unique key pair burned into the device proving its authenticity

Question 27

What are physiological biometrics?

Answer 27

Using unique physical characteristics of a person for authentication

Question 28

Name two types of fingerprint scanners.

Answer 28

Static takes a picture and compares dynamic uses a slit to scan

Question 29

What is a retinal scanner?

Answer 29

Uses low-energy infrared light to map unique retina patterns

Question 30

What other biometrics can be used for authentication?

Answer 30

Vein scanning gait voice iris facial recognition

Question 31

What is false acceptance rate FAR in biometrics?

Answer 31

Frequency imposters are incorrectly accepted as genuine users

Question 32

What is false rejection rate FRR in biometrics?

Answer 32

Frequency legitimate users are incorrectly rejected

Question 33

What is cognitive biometrics?

Answer 33

Authentication based on user perception thought and life experience

Question 34

What is behavioural biometrics?

Answer 34

Authentication based on normal actions like typing rhythm

Question 35

What two typing variables does keystroke dynamics use?

Answer 35

Dwell time time pressing key and flight time between keystrokes

Question 36

What is the purpose of salts in password security?

Answer 36

Random string added to passwords before hashing to slow attacks

Question 37

What is key stretching in password security?

Answer 37

Specialized hashing designed to be slow making password cracking harder

Question 38

What is a password vault?

Answer 38

A secure repository or manager used to store and manage passwords

Question 39

What is Single Sign-On SSO?

Answer 39

Using one authentication credential to access multiple accounts or applications

Question 40

What is RADIUS in authentication?

Answer 40

Remote Authentication Dial In User Service a centralised authentication protocol

Question 41

What is Kerberos authentication?

Answer 41

System using tickets that are encrypted and expire to securely authenticate users

Question 42

What is TACACS+?

Answer 42

Cisco extension of TACACS providing full packet encryption for authentication

Question 43

What is a directory service in networks?

Answer 43

Database storing user and device info to manage authentication and permissions

Question 44

What is SAML?

Answer 44

Security Assertion Markup Language an XML standard for exchanging authentication data

Question 45

What is Extensible Authentication Protocol EAP?

Answer 45

Framework transporting authentication protocols using request response success failure packets

Question 46

What are the five categories of authentication credentials?

Answer 46

What you know what you have what you are what you do and where you are

Question 47

Why do passwords provide weak protection?

Answer 47

Because they rely on human memory and are vulnerable to offline attacks

Question 48

What is one way enterprises protect stored password digests?

Answer 48

Adding a random salt string to make attacks slower

Question 49

What is one benefit of behavioural biometrics?

Answer 49

Requires no specialized hardware and authenticates based on user actions