Ua lag ua luamHais kom tus kws

Identification thiab authentication: tswv yim

Identification thiab authentication yog lub hauv paus ntawm niaj hnub software thiab kho vajtse ruaj ntseg, raws li lwm cov kev pab no mas npaj rau kev pab ntawm cov kev kawm. Cov tswv yim sawv cev rau ib yam ntawm cov thawj kab kws muaj txuj ci, kom ntseeg tau kev ruaj ntseg ntawm cov ntaub ntawv qhov chaw lub koom haum.

Yuav ua li cas yog nws?

Identification thiab authentication muaj txawv zog. Tus thawj muab ib tug kawm (neeg siv los sis cov txheej txheem uas ua rau sawv cev ntawm) lub sijhawm los qhia rau lawv tus kheej lub npe. Los ntawm txhais tau tias ntawm authentication yog tus thib ob sab yog kiag li ntseeg hais tias cov kev kawm yeej yog ib tug uas nws leg ntaubntawv yuav. Feem ntau, raws li ib tug yaj qhia kom paub thiab authentication yog hloov los ntawm cov kab lus "Post lub npe" thiab "authentication".

Lawv lawv tus kheej raug muab faib ua ob peb ntau yam. Tom ntej no, peb xav txog hais tias ib tug kev qhia kom paub thiab authentication yog thiab yog dab tsi.

authentication

Cov tswvyim no muab rau ob hom: ib txoj kev, tus neeg yuav tsum xub ua pov thawj rau cov neeg rau zaub mov mus kuaj, thiab ob sab sib dho, uas yog, thaum ib tug kev sib nrig sib paub yog ua. Raug cov piv txwv ntawm yuav ua li cas rau kev ib tug qauv qhia kom paub thiab authentication ntawm cov neeg siv - yog teev rau hauv ib lub system. Yog li, ntau hom yuav siv tau nyob rau hauv ntau yam khoom.

Nyob rau hauv ib tug networked ib puag ncig, qhov chaw uas tus qhia kom paub thiab authentication ntawm cov neeg siv ua rau ib thaj nyuag dispersed ob tog, xyuas cov kev pab cuam yog distinguished los ntawm ob lub ntsiab sib nrauj:

  • uas ua raws li ib tug authenticator;
  • yuav ua li cas nws tau raug tsa los ntawm cov kev pauv ntawm cov ntaub ntawv authentication thiab kev qhia kom paub thiab yuav ua li cas los tiv thaiv nws.

Yuav kom paub meej tias nws authenticity, qhov kev kawm yuav tsum tau hais rau ib tug ntawm cov nram qab no cov chaw:

  • tej yam lus qhia uas nws paub (tus kheej tooj, ib lo lus zais, ib tug tshwj xeeb cryptographic tseem ceeb, thiab lwm yam ...);
  • tej yam uas nws tswv (tus kheej card los sis lwm yam ntaus ntawv muaj ib tug uas zoo sib xws lub hom phiaj);
  • tej yam xwm, uas yog ib tug keeb ntawm nws (tuabneeg, lub suab los yog lwm yam biometric qhia kom paub thiab authentication ntawm cov neeg siv).

system nta

Nyob rau hauv lub qhib network ib puag ncig, lub tog tsis muaj ib tug neeg txoj kev, thiab nws yog hais tias nyob rau hauv Feem ntau, cov ntaub ntawv kis tau los ntawm cov kev kawm yuav nws thiaj li yuav sib txawv los ntawm cov ntaub ntawv tau txais thiab siv tau rau authentication. Yuav tsum tau muaj kev ruaj ntseg ntawm active thiab passive network sniffer, uas yog, kev tiv thaiv tiv thaiv corrections, interception los yog playback ntawm txawv cov ntaub ntawv. Lo lus zais hloov kev xaiv nyob rau hauv qhov tseeb yog tsis txaus siab, thiab cia li yuav cawm tsis tau lub hnub, thiab encrypted passwords, vim hais tias lawv tsis muab, playback tiv thaiv. Uas yog vim li cas niaj hnub no yog siv ntau txoj authentication twg.

Txhim khu kev qha kev qhia kom paub yog ib qhov nyuaj tsis tau tsuas yog vim hais tias ntawm ib tug ntau yam ntawm network ntshai heev txawm, tiam sis kuj rau ib tug ntau yam ntawm lwm yam yog vim li cas. Tus thawj zoo yam authentication chaw tej zaum yuav abducted, los yog falsify los yog Scouting. ib nro ntawm lub ntseeg ntawm lub system siv yog tseem tam sim no, nyob rau hauv ib tes, thiab lub system administrator los yog cov neeg siv cov chaw - nyob rau lwm yam. Yog li, rau yog vim li cas ntawm kev ruaj ntseg yuav tsum tau nrog ib co zaus hais kom tus neeg siv yuav rov taw qhia txog nws authentication ntaub ntawv (raws li es tsis txhob nws yuav tau zaum ib co lwm yam neeg), thiab nws tsis tau tsuas yog ua ib qho kev ntxiv teeb meem, tab sis kuj ho tsub kom lub sij hawm ntawm tias ib tug neeg muaj peev xwm pry ntaub ntawv tswv yim. Nyob rau hauv tas li ntawd, cov ntseeg ntawm kev tiv thaiv txhais tau tias yam teeb meem loj rau nws tus nqi.

Niaj hnub nimno cov cim thiab authentication tshuab txhawb lub tswvyim ntawm ib kos npe rau-on mus rau lub network, uas feem ntau caters rau cov uas yuav tsum tau nyob rau hauv cov nqe lus ntawm cov neeg siv-friendliness. Yog hais tias tus txheej txheem neeg network muaj ib tug ntau ntawm cov ntaub ntawv kev pab, muab tau ib qho kev ywj ncig, ces tus ntau thawj coj ntawm tus kheej cov ntaub ntawv yuav dhau ua nra hnyav. Thaum lub caij nws tseem yog tsis yooj yim sua hais tias kev siv ntawm ib kos npe rau-on rau network yog dab tsi, raws li cov hom kev daws teeb meem yog tseem tsis tau tsim.

Yog li, muaj ntau yam tseem tabtom nrhiav ib tug hais nruab nrab ntawm affordability, yooj yim thiab kev cia siab ntawm nyiaj txiag, uas yuav muab kev qhia kom paub / authentication. Tus neeg siv kev tso cai nyob rau hauv cov ntaub ntawv no yog nqa tawm raws li ib tug neeg cov kev cai.

Tshwj xeeb mloog yuav tsum tau them mus rau lub fact tias cov kev pab cuam yuav tsum xaiv tus kwv uas tawm tsam nyob rau hauv muaj. Yog hais tias lub system configuration yog ua nyob rau hauv xws li ib txoj hais tias tom qab ib tug xov tooj ntawm ua tsis tau tejyam me nyuam no yuav nkag mus rau lub tseem tau raug xauv, ces tus attacker yuav tsis txhob lag luam tsim nyog cov neeg siv los ntawm cia li ib tug ob peb keystrokes.

lo lus zais authentication

Lub ntsiab kom zoo dua ntawm no system yog hais tias nws yog tsis tshua muaj tej yam yooj yim thiab cov lus feem ntau. Passwords tau ntev tau siv los ntawm kev khiav hauj lwm systems thiab lwm yam kev pab, thiab nrog rau cov kev siv ntawm muab kev ruaj ntseg, uas yog heev tau rau feem ntau cov koom haum. Nyob rau lwm cov tes, los ntawm ib tug ntau txheej yam ntxwv ntawm tej tshuab yog cov weakest txhais tau tias los ntawm uas qhia txog tus kheej / authentication yuav muab los siv. Tso Cai nyob rau hauv cov ntaub ntawv no yuav yooj yim heev, vim hais tias passwords yuav tsum catchy, tab sis nws tsis yog nyuaj rau twv ua ke nrog ntawm tej yam yooj yim, tshwj xeeb tshaj yog yog hais tias tus neeg paub cov nyiam ntawm ib tug neeg siv.

Tej zaum nws tshwm sim hais tias cov passwords yog, nyob rau hauv tus, tsis txhob muab zais cia, raws li yog zoo nkauj txheem qhov tseem ceeb teev nyob rau hauv cov kev cov ntaub ntawv, thiab tsis yeej ib txwm tom qab lub system yog ntsia, hloov lawv.

Thaum koj sau koj lo lus zais koj yuav saib tau, nyob rau hauv tej rooj plaub, cov neeg txawm siv tshwj xeeb kho qhov muag seev.

Cov neeg siv, lub ntsiab kev kawm ntawm kev qhia kom paub thiab authentication, passwords yog feem ntau qhia lug txhawb cov miv rau cov neeg ntawm tej lub sij hawm tau hloov tswv. Nyob rau hauv kev tshawb xav, nyob rau hauv tej lub sijhawm nws yuav ntau yog siv tshwj xeeb kev nkag ntawm lwm yam uas, tab sis nyob rau hauv kev xyaum nws tsis yog nyob rau hauv kev siv. Thiab yog hais tias tus password paub ob tug neeg, nws yog heev heev tsub kom qhov muaj feem uas nyob rau hauv lub kawg ntawm nws thiab xav paub ntau ntxiv.

Yuav ua li cas mus kho tau nws?

Muaj ntau ntau cov cuab yeej xws li kev qhia kom paub thiab authentication yuav muaj kev tiv thaiv. Cov ntaub ntawv ua tivthaiv tej zaum yuav raug txim raws li nram no:

  • Lub imposition ntawm ntau yam kev txwv. Feem ntau cov feem ntau teem cai rau lo lus zais ntev thiab cov ntsiab lus ntawm tej cim.
  • Chaw ua hauj lwm lo lus zais tas kas nuv, ie lawv yuav tsum tau hloov tsis tseg.
  • Limited nkag tau mus rau yooj yim lo lus zais ntaub ntawv.
  • Txwv ntawm tag nrho cov xov tooj ntawm cov ua tsis tau tejyam sim uas yog muaj thaum koj teev nyob rau hauv. Vim hais tias ntawm no attackers yuav tsum tau nqa tawm tsuas yog tus nqis tes ua ua qhia kom paub thiab authentication li zoo raws li lub sorting txoj kev yuav siv tsis tau.
  • Yam ua ntej kev kawm ntawm cov neeg siv.
  • Siv tshwj xeeb software lo lus zais generator uas yuav ua li ob peb ua ke uas yog sufficiently melodious thiab nco.

Tag nrho cov ntawm cov kev ntsuas yuav siv tau nyob rau hauv txhua rooj plaub, txawm hais tias ua ke nrog passwords yuav tau siv lwm yam txhais tau tias ntawm authentication.

Ib-lub sij hawm passwords

Qhov saum toj no embodiments yog reusable, thiab nyob rau hauv cov ntaub ntawv ntawm qhib ob peb ua ke attacker yog tau ua tau tej yam hauj lwm rau tus neeg siv tus sawv cev. Uas yog vim li cas raws li ib tug muaj zog txhais tau tias resistant rau tau ib tug passive network sniffer, siv ib tug-lub sij hawm passwords los ntawm cov uas paub thiab authentication system yog ntau npaum li cas ruaj ntseg, tab sis yog tsis raws li yooj yim.

Thaum lub caij, ib qho ntawm feem nrov software ib-lub sij hawm lo lus zais generator yog ib tug system hu ua S / TSEEM CEEB, tso tawm los ntawm Bellcore. Cov yooj yim lub tswvyim ntawm no system yog hais tias muaj yog ib tug tej yam muaj nuj nqi ntawm lub F, uas yog lub npe hu mus rau ob tus neeg siv thiab cov authentication neeg rau zaub mov. Cov nram qab no yog ib daim card tseem ceeb K, paub xwb rau ib tug neeg siv.

Thaum thawj zaug thawj coj neeg siv, qhov no muaj nuj nqi yog siv los Ntsiab ib tug xov tooj ntawm lub sij hawm, ces tus no ua rua ntawm lub neeg rau zaub mov. Tom qab, lub authentication txoj kev yog raws li nram no:

  1. Nyob rau tus neeg siv system los ntawm cov neeg rau zaub mov los txog rau lub xov tooj uas yog 1 tsawg tshaj li tus xov tooj ntawm lub sij hawm siv cov nuj nqi rau qhov tseem ceeb.
  2. Tus neeg siv muaj nuj nqi yog siv los tsis pub leejtwg paub daws nyob rau hauv lub xov tooj ntawm lub sij hawm uas tau raug teem nyob rau hauv thawj point, whereupon cov yog xa ntawm lub network ncaj qha mus rau lub authentication neeg rau zaub mov.
  3. Cov neeg rau zaub mov siv no muaj nuj nqi rau cov tau tus nqi, thiab ces tus no ua piv nrog rau yav tas los muab tus nqi. Yog hais tias qhov kev tshwm sim phim, ces tus neeg siv yog leejtwg yog tsim los pab, thiab cov neeg rau zaub mov khw muag khoom cov nqi tshiab, thiab ces txo lub txee los ntawm ib tug.

Nyob rau hauv kev xyaum, qhov kev siv ntawm no technology muaj ib tug me ntsis ntxiv nyuab qauv, tab sis nyob rau lub sij hawm ntawd nws tsis tseem ceeb. Txij li thaum cov nuj nqi yog irreversible, txawm yog hais tias tus password interception los yog muab tsis tau tso cai nkag tau mus rau lub authentication neeg rau zaub mov tsis tau muab cov tseem mus nrhiav tau tus lwm yam tseem ceeb thiab txhua txoj kev mus twv seb yuav ua li cas nws yuav raws nraim zoo li lub nram qab no ib-lub sij hawm lo lus zais.

Nyob rau hauv Russia raws li ib tug unified kev pab cuam, ib tug tshwj xeeb lub xeev portal - "Cim system ntawm kev qhia kom paub / authentication" ( "ESIA").

Lwm mus kom ze rau muaj zog authentication system dag nyob rau hauv lub fact tias cov lo lus zais tshiab twb generated ntawm luv luv Team sib, uas yog tseem pom tau hais los ntawm kev siv ntawm tshwj xeeb cov kev pab cuam los yog ntau yam ntse phaib. Nyob rau hauv cov ntaub ntawv no, lub authentication neeg rau zaub mov yuav tsum tau txais lub sib nug xov lo lus zais generating algorithm thiab tej yam tsis txuam nrog nws, thiab nyob rau hauv tas li ntawd, yuav tsum yog tam sim no raws li lub moos synchronization neeg rau zaub mov thiab cov neeg.

Kerberos

Kerberos authentication neeg rau zaub mov rau cov thawj lub sij hawm nyob rau hauv nruab nrab-90s ntawm lub xeem caug xyoo, tab sis txij thaum ntawd los nws twb tau txais ib tug ntau ntawm yuav tsum muaj kev pauv hloov. Thaum lub caij, tus neeg Cheebtsam ntawm lub system yog tam sim no nyob rau hauv yuav luag txhua txhua niaj hnub operating system.

Lub hom phiaj tseem ceeb ntawm qhov kev pab no yog kom daws tau qhov nram qab no teeb meem: muaj ib tug tej yam uas tsis yog-kev ruaj ntseg network thiab cov ntshav nyob rau hauv nws daim ntawv concentrated nyob rau hauv ntau yam kev kawm rau cov neeg siv, thiab neeg rau zaub mov thiab tus thov kev pab software systems. Txhua xws chaw yog tam sim no ib tug neeg tsis pub leejtwg paub qhov tseem ceeb, thiab kev kawm nrog ib lub sij hawm los ua pov thawj lawv authenticity rau qhov kev kawm rau hauv lub S, yam uas nws tsuas yuav tsis muab kev pab nws, nws yuav tsum tau tsis tsuas yog hu rau nws tus kheej, tab sis kuj yuav qhia tau hais tias nws paub ib co tsis pub leejtwg paub qhov tseem ceeb. Nyob rau tib lub sij hawm tsis muaj txoj kev uas yuav cia li xa nyob rau hauv cov kev taw qhia ntawm koj daim card tseem ceeb S raws li nyob rau hauv thawj Piv txwv li cov network yog qhib, thiab nyob rau hauv tas li ntawd, S tsis paub, thiab, nyob rau hauv tus, yuav tsum tsis txhob paub nws. Nyob rau hauv no qhov teeb meem, siv tsawg straightforward technology ua qauv qhia kev paub ntawm cov ntaub ntawv.

Hauv kev qhia kom paub / authentication ntawm Kerberos system muab rau nws siv raws li ib tug thoj thib peb tog, uas muaj ntaub ntawv txog lub zais cia cov yuam sij ntawm serviced qhov chaw thiab pab lawv nyob rau hauv nqa tawm pairwise authentication yog tias tsim nyog.

Yog li, tus neeg ua ntej xa mus rau hauv ib cov lus nug uas muaj qhov tsim nyog cov lus qhia txog nws, raws li zoo raws li lub thov kev pab cuam. Tom qab no, Kerberos muab nws ib tug zoo ntawm daim pib uas yog encrypted nrog ib tug pub leejtwg paub qhov tseem ceeb ntawm cov neeg rau zaub mov, raws li tau zoo raws li ib daim ntawv ntawm ib co ntawm cov ntaub ntawv los ntawm nws, uas yog tsis pub leejtwg paub qhov tseem ceeb ntawm tus neeg. Nyob rau hauv cov ntaub ntawv uas nws yog tsim los uas cov neeg twb deciphered ntaub ntawv npaj nws, uas yog, nws muaj peev xwm ua kom pom tias cov lwm yam tseem ceeb yog lub npe hu rau nws tiag tiag. Qhov no qhia tau hais tias tus neeg yog tus neeg uas nws yog.

Tshwj xeeb mloog yuav tsum nyob ntawm no yuav coj los xyuas kom meej tias cov kis tau tus mob ntawm daim card yuam sij tsis nqa tawm nyob rau hauv network, thiab lawv yuav siv heev dua lwm yam rau encryption.

authentication siv biometrics

Biometrics yuav ib tug ua ke ntawm cia li qhia kom paub / authentication ntawm cov neeg raws li lawv tus cwj pwm los yog physiological yam ntxwv. Lub cev txoj kev qhia kom paub thiab authentication muab ib tug retina scan thiab qhov muag cornea, cov yiv tes, lub ntsej muag thiab txhais tes geometry, raws li tau zoo raws li lwm yam ntaub ntawv tus kheej. Cov cwj pwm yam ntxwv kuj muaj xws li cov style ntawm kev ua hauj lwm nrog cov keyboard thiab lub zog ntawm cov kos npe. Ua ke txoj kev yog tus tsom xam ntawm qhov sib txawv yam ntxwv ntawm cov neeg lub suab, raws li zoo raws li paub txog nws hais lus.

Tej kev qhia kom paub / authentication thiab encryption systems yog siv dav nyob rau hauv ntau lub teb chaws nyob ib ncig ntawm lub ntiaj teb no, tab sis rau ib tug ntev lub sij hawm, lawv yog cov tsis tshua nqi thiab complexity ntawm kev siv. Ntau ntev los no, qhov kev thov rau biometric khoom tau nce ho vim txoj kev loj hlob ntawm e-commerce, vim hais tias, los ntawm tus taw tes ntawm view ntawm tus neeg siv, yog yooj yim npaum li los qhia nws tus kheej, dua li yuav tsum nco ntsoov tej lus qhia. Raws li, thov tsim mov, yog li kev ua lag luam pib tshwm kuj tsis tshua muaj nqi khoom, uas yog tsuas yog teem rau tuabneeg paub.

Nyob rau hauv lub overwhelming feem ntau ntawm cov neeg mob, biometrics yog siv nyob rau hauv ua ke nrog nrog rau lwm cov authenticators xws li ntse phaib. Feem ntau biometric authentication yog tsuas yog tus thawj kab kws muaj txuj ci thiab ua raws li ib tug txhais tau tias ntawm mus pab tau txoj lub smartcard, nrog rau ntau yam cryptographic secrets. Thaum uas siv cov technology no, lub biometric template yog khaws tseg rau tib daim card.

Kev ua nyob rau hauv lub teb ntawm biometrics yog txaus siab. Cov uas twb muaj lawm Consortium, raws li zoo raws li heev kom nquag plias ua hauj lwm yog raws li nram no rau standardize ntau yam ntawm lub tshuab. Niaj hnub no peb yuav pom ib tug ntau ntawm advertising cov khoom uas biometric technologies yog hais raws li ib qho zoo tagnrho txhais tau tias muab nce kev nyab xeeb thiab nyob rau tib lub sij hawm pheej yig rau cov masses.

ESIA

system ntawm kev qhia kom paub thiab authentication ( "ESIA") yog ib tug tshwj xeeb kev pab cuam tsim los xyuas kom meej qhov kev siv ntawm ntau yam kev pab raws qib muaj feem xyuam rau lub pov thawj ntawm lub authenticity ntawm cov neeg thov kev pab thiab cov tswv cuab ntawm interagency kev koom tes nyob rau hauv cov kev tshwm sim ntawm tej kiag los yog pej xeem cov kev pab cuam nyob rau hauv hluav taws xob daim ntawv.

Nyob rau hauv thiaj li yuav tau nkag mus rau ib tug "ib portal ntawm lub xeev lug", raws li zoo raws li lwm yam ntaub ntawv systems infrastructure ntawm uas twb muaj lawm e-tsoom fwv, koj thawj zaug yuav tsum mus sau npe rau lub account thiab raws li ib tug tshwm sim, tau AED.

theem

Portal ntawm ib tug unified system ntawm kev qhia kom paub thiab authentication muab peb tej theem ntawm nyiaj rau cov neeg:

  • Yooj yim zog. Rau nws cov ntawv sau npe tsuas muaj koj npe thiab xeem, raws li zoo li ib co kev channel ntawm kev sib txuas lus nyob rau hauv daim ntawv ntawm ib tug email chaw nyob los yog xov tooj txawb. Qhov no thawj theem, los ntawm cov uas ib tug neeg muab kev nkag tau mus xwb mus rau ib tug tsawg daim ntawv teev cov ntau yam tsoom fwv cov kev pab cuam, raws li zoo raws li lub peev xwm ntawm uas twb muaj lawm ntaub ntawv systems.
  • Standard. Yog xav tau chiv tsim nyog rau qhov teeb meem ib tug yooj yim to taub account, thiab ces kuj muab cov lus qhia ntxiv, nrog rau cov ntaub ntawv los ntawm lub passport tooj thiab kev kho mob ib tug neeg account. Cov lus no yog tau soj ntsuam los ntawm cov ntaub ntawv system ntawm lub Laus Fund, raws li zoo raws li tsoom fwv teb chaws tsiv teb tsaws Service, thiab, yog hais tias tus kuaj ntawd yog kev vam meej, cov account yog hloov dua siab tshiab rau ib tug qauv qib, nws yuav qhib tus neeg siv yuav ib txhab daim ntawv teev ntawm lub xeev cov kev pab cuam.
  • Paub tseeb hais tias. Yog xav tau rau theem no ntawm koj tus account, ib tug unified system ntawm kev qhia kom paub thiab authentication yuav tsum tau cov neeg siv rau ib tug qauv account, raws li zoo raws li pov thawj ntawm tus kheej, uas yog ua los ntawm ib tug tus kheej mus ntsib ib tug tso cai kev pab cuam department los yog los ntawm tau ib tug ua kom code ntawm ib tug sau npe daim ntawv. Nyob rau hauv cov kev tshwm sim hais tias ib tug neeg paub yog muaj kev vam meej, cov account yuav mus rau ib theem tshiab, thiab rau cov neeg siv yuav tau nkag mus rau ib tug ua tiav daim ntawv teev cov uas yuav tsum tau rau pej xeem cov kev pab cuam.

Txawm tias muaj tseeb hais tias cov txheej txheem yuav zoo li txoj txaus los ua tau saib tag nrho daim ntawv teev uas yuav tsum tau cov ntaub ntawv yuav ua tau ncaj qha rau ntawm cov nom lub website, ces nws tseem tau mus ua kom tiav sau npe rau ib tug ob peb hnub.

Similar articles

 

 

 

 

Trending Now

 

 

 

 

Newest

Copyright © 2018 hmn.birmiss.com. Theme powered by WordPress.