Difference between revisions of "Authentication"
Line 49: | Line 49: | ||
{{definition|Autenticación: Procedimiento de comprobación de la identidad de un solicitante o titular de certificados de DNIe. (Sede del eDNI) <ref name=SP_G>[http://www.hacienda.gob.es/Documentacion/Publico/SGT/CATALOGO_SEFP/014_MinHFP_diccionario_AE.pdf Diccionario de términos y conceptos de la Administración Electrónica, Ministerio de Hacienda y Función Pública Secretaría General Técnica, 2017]</ref>}}<br /> | {{definition|Autenticación: Procedimiento de comprobación de la identidad de un solicitante o titular de certificados de DNIe. (Sede del eDNI) <ref name=SP_G>[http://www.hacienda.gob.es/Documentacion/Publico/SGT/CATALOGO_SEFP/014_MinHFP_diccionario_AE.pdf Diccionario de términos y conceptos de la Administración Electrónica, Ministerio de Hacienda y Función Pública Secretaría General Técnica, 2017]</ref>}}<br /> | ||
{{definition|Autenticación: La autenticación es un servicio de seguridad que permite verificar la identidad. Una firma digital es un mecanismo que asegura la identidad del firmante del mensaje y por tanto su autenticidad. (Definición de la FNMT; confusa) <ref name=SP_G>[http://www.hacienda.gob.es/Documentacion/Publico/SGT/CATALOGO_SEFP/014_MinHFP_diccionario_AE.pdf Diccionario de términos y conceptos de la Administración Electrónica, Ministerio de Hacienda y Función Pública Secretaría General Técnica, 2017]</ref>}}<br/><br/> | {{definition|Autenticación: La autenticación es un servicio de seguridad que permite verificar la identidad. Una firma digital es un mecanismo que asegura la identidad del firmante del mensaje y por tanto su autenticidad. (Definición de la FNMT; confusa) <ref name=SP_G>[http://www.hacienda.gob.es/Documentacion/Publico/SGT/CATALOGO_SEFP/014_MinHFP_diccionario_AE.pdf Diccionario de términos y conceptos de la Administración Electrónica, Ministerio de Hacienda y Función Pública Secretaría General Técnica, 2017]</ref>}}<br/><br/> | ||
+ | ==== [[Sri Lanka]]==== | ||
+ | {{definition|Authentication: In a network, the process by which the system attempts to ensure that the person logging on is the same person to whom the account was issued. <ref>[http://www.slcert.gov.lk/Downloads/Policies/19.doc National Centre for Cyber Security, Information Security Policy Domains #19: Glossary]</ref> }}<br/><br/> | ||
+ | |||
+ | |||
==== [[United Kingdom]]==== | ==== [[United Kingdom]]==== | ||
{{definition|Authentication: the process of verifying the identity, or other attributes of a user, process or device. <ref>[https://www.octf.gov.uk/OCTF/media/OCTF/images/publications/Cybercrime/national_cyber_security_strategy-2016-2021.pdf National Cyber Security Strategy 2016-2021]</ref> }}<br/><br/> | {{definition|Authentication: the process of verifying the identity, or other attributes of a user, process or device. <ref>[https://www.octf.gov.uk/OCTF/media/OCTF/images/publications/Cybercrime/national_cyber_security_strategy-2016-2021.pdf National Cyber Security Strategy 2016-2021]</ref> }}<br/><br/> | ||
Line 76: | Line 80: | ||
==References== | ==References== | ||
[[Category:Information]][[Category:Security]] | [[Category:Information]][[Category:Security]] | ||
− | {{#set:defined by=IAEA|defined by=ISO|defined by=Australia|defined by=Brazil|defined by=Burkina-Faso|defined by=Egypt|defined by=France|defined by=Georgia|defined by=Hong Kong|defined by=Italy|defined by=Kuwait|defined by=Liberia|defined by=Netherlands|defined by=Oman|defined by= Philippines|defined by=Romania|defined by=Senegal|defined by=Spain|defined by=United Kingdom|defined by=United States|defined by=NIST|defined by=IETF|defined by=OWASP|defined by=ISA}} | + | {{#set:defined by=IAEA|defined by=ISO|defined by=Australia|defined by=Brazil|defined by=Burkina-Faso|defined by=Egypt|defined by=France|defined by=Georgia|defined by=Hong Kong|defined by=Italy|defined by=Kuwait|defined by=Liberia|defined by=Netherlands|defined by=Oman|defined by= Philippines|defined by=Romania|defined by=Senegal|defined by=Spain|defined by=Sri Lanka|defined by=United Kingdom|defined by=United States|defined by=NIST|defined by=IETF|defined by=OWASP|defined by=ISA}} |
Revision as of 01:32, 27 March 2019
Contents
- 1 Definition
- 1.1 International Definitions
- 1.2 National Definitions
- 1.3 Other definitions
- 1.4 International Standard
- 2 See also
- 3 Notes
- 4 References
Definition
International Definitions
IAEA
National Definitions
Australia
Brazil
Burkina-Faso
Egypt
France
Généralement l’authentification est précédée d’une identification qui permet à cette entité de se faire reconnaître du système par un élément dont on l’a doté. En résumé, s’identifier c’est communiquer son identité, s’authentifier c’est apporter la preuve de son identité.
Georgia
In the authentication process, a certain attribute of a user or system certifies authorized access to such systems or data, for example, a key (see public key cryptography), a smart card, a password, the user name or even biometrical traits (fingerprint). A higher security level can be achieved by the combination of different traits used for authentication.
Hong Kong
Authentication: A process or method to identify and to prove the identity of a user/party who attempts to send message or access data. [8]
Italy
Costituisce spesso una condizione per accedere ai sistemi informativi e di comunicazione. A tal fine vengono frequentemente impiegati metodi che associano vari strumenti di riconoscimento, quali dati biometrici, tesserini identificativi, password, etc.
Kuwait
Liberia
Netherlands
Oman
Philippines
Romania
Senegal
Spain
Sri Lanka
United Kingdom
United States
NIST
Other definitions
OWASP
Authentication is what happens when you log into a system. It compares your credentials (often user name and password) with a previously established known value such that the system can know that you are who you say you are. For sensitive systems, there is a trend toward using two factor authentication (2FA) which essentially means that users must supply two different secrets, usually one is a password (something they know) and the other is a pin supplied via text (verifying something they have).
International Standard
ISA-62443-*
IETF
ISO/IEC - ISO/IEC 27000:2014
See also
Notes
- ↑ IAEA - Nuclear Security Series Glossary Version 1.3 (November 2015)
- ↑ on-line glossary Stay Safe On-line
- ↑ GLOSSÁRIO DE DEFESA CIVIL ESTUDOS DE RISCOS E MEDICINA DE DESASTRES, Ministério da Integração Nacional, Brazil
- ↑ CIRT-BF Glossary
- ↑ Glossary of the National Telecom Authority (NTA), Egypt
- ↑ ANSSI Glossaire
- ↑ A Digital Georgia e-Georgia strategy and action plan 2014-2018
- ↑ Glossary for Information Security Terms/資訊保安詞彙表
- ↑ IL LINGUAGGIO DEGLI ORGANISMI INFORMATIVI Glossario (2013)
- ↑ Glossary Communication and Information Technology Regulatory
- ↑ Government of Liberia’s Policy for the Telecommunications and Information Communications Technology (ICT) sectors
- ↑ Cyber Security Beeld Nederland 2018
- ↑ ABDO 2017
- ↑ Cyber Security Beeld Nederland 2016
- ↑ Begrippenlijst eID Afsprakenstelsel, 2014
- ↑ Oman CERT Glossary
- ↑ NHS Cyber security glossary
- ↑ GLOSAR de termeni din domeniul ordinii şi siguranţei publice, MINISTERUL ADMINISTRAŢIEI ŞI INTERNELOR DIRECŢIA GENERALĂ ORGANIZARE, PLANIFICARE MISIUNI ŞI RESURSE
- ↑ STRATÉGIE NATIONALE DE CYBERSÉCURITÉ DU SÉNÉGAL (SNC2022)
- ↑ 20.0 20.1 20.2 20.3 Diccionario de términos y conceptos de la Administración Electrónica, Ministerio de Hacienda y Función Pública Secretaría General Técnica, 2017
- ↑ National Centre for Cyber Security, Information Security Policy Domains #19: Glossary
- ↑ National Cyber Security Strategy 2016-2021
- ↑ NIST SOURCE: SP 800-53; SP 800-53A; SP 800-27; FIPS 200; SP 800-30
- ↑ OWASP Glossary
- ↑ ISA-62443 series
- ↑ RFC2828 glossary
- ↑ ISO/IEC 27000:2014, Information technology -- Security techniques -- Information security management systems -- Overview and vocabulary