Mechanics of User Identification and Authentication: Fundamentals of Identity Management (Hardcover)

User identification and authentication are essential parts of information security. Users must authenticate as they access their computer systems at work or at home every day. Yet do users understand how and why they are actually being authenticated, the security level of the authentication mechanism that they are using, and the potential impacts of selecting one authentication mechanism or another?

Introducing key concepts, Mechanics of User Identification and Authentication: Fundamentals of Identity Management outlines the process of controlled access to resources through authentication, authorization, and accounting in an in-depth, yet accessible manner. It examines today's security landscape and the specific threats to user authentication. The book then outlines the process of controlled access to resources and discusses the types of user credentials that can be presented as proof of identity prior to accessing a computer system. It also contains an overview on cryptography that includes the essential approaches and terms required for understanding how user authentication works.

This book provides specific information on the user authentication process for both UNIX and Windows. Addressing more advanced applications and services, the author presents common security models such as GSSAPI and discusses authentication architecture. Each method is illustrated with a specific authentication scenario.

使用者識別和驗證是資訊安全的重要組成部分。使用者每天在工作或家中存取電腦系統時，都必須進行身份驗證。然而，使用者是否了解他們實際上是如何被驗證的、他們所使用的驗證機制的安全等級，以及選擇一種驗證機制或另一種驗證機制可能產生的潛在影響呢？

《使用者識別和驗證機制：身份管理基礎》介紹了關鍵概念，以深入且易於理解的方式概述了通過身份驗證、授權和記帳來控制對資源的訪問過程。它檢視了當今的安全環境以及對使用者驗證的具體威脅。該書還概述了控制對資源的訪問過程，並討論了在訪問電腦系統之前可以作為身份證明的使用者憑證類型。它還包含了一個關於加密的概述，其中包括了理解使用者驗證工作原理所需的基本方法和術語。

本書提供了關於UNIX和Windows的使用者驗證過程的具體信息。作者還介紹了更高級的應用和服務，並提出了常見的安全模型，如GSSAPI，並討論了驗證架構。每種方法都以具體的驗證場景為例加以說明。