Authentication and Access Control: Practical Cryptography Methods and Tools
暫譯: 身份驗證與存取控制:實用的密碼學方法與工具
Boonkrong, Sirapat
買這商品的人也買了...
商品描述
Cybersecurity is a critical concern for individuals and for organizations of all types and sizes. Authentication and access control are the first line of defense to help protect you from being attacked.
This book begins with the theoretical background of cryptography and the foundations of authentication technologies and attack mechanisms. You will learn about the mechanisms that are available to protect computer networks, systems, applications, and general digital technologies.
Different methods of authentication are covered, including the most commonly used schemes in password protection: two-factor authentication and multi-factor authentication. You will learn how to securely store passwords to reduce the risk of compromise. Biometric authentication--a mechanism that has gained popularity over recent years--is covered, including its strengths and weaknesses.Authentication and Access Control explains the types of errors that lead to vulnerabilities in authentication mechanisms. To avoid these mistakes, the book explains the essential principles for designing and implementing authentication schemes you can use in real-world situations. Current and future trends in authentication technologies are reviewed.
What You Will Learn
- Understand the basic principles of cryptography before digging into the details of authentication mechanisms
- Be familiar with the theories behind password generation and the different types of passwords, including graphical and grid-based passwords
- Be aware of the problems associated with the use of biometrics, especially with establishing a suitable level of biometric matching or the biometric threshold value
- Study examples of multi-factor authentication protocols and be clear on the principles
- Know how to establish authentication and how key establishment processes work together despite their differences
- Be well versed on the current standards for interoperability and compatibility
- Consider future authentication technologies to solve today's problems
Who This Book Is For
Cybersecurity practitioners and professionals, researchers, and lecturers, as well as undergraduate and postgraduate students looking for supplementary information to expand their knowledge on authentication mechanisms
商品描述(中文翻譯)
網路安全對於個人以及各類型和規模的組織來說都是一個關鍵的議題。身份驗證和存取控制是幫助保護您免受攻擊的第一道防線。
本書首先介紹密碼學的理論背景以及身份驗證技術和攻擊機制的基礎。您將學習到可用於保護計算機網路、系統、應用程式和一般數位技術的機制。
本書涵蓋了不同的身份驗證方法,包括在密碼保護中最常用的方案:雙因素身份驗證和多因素身份驗證。您將學習如何安全地儲存密碼,以降低被破解的風險。生物識別身份驗證——近年來越來越受歡迎的一種機制——也會被討論,包括其優勢和劣勢。
《身份驗證與存取控制》解釋了導致身份驗證機制脆弱性的錯誤類型。為了避免這些錯誤,本書說明了設計和實施身份驗證方案的基本原則,這些方案可以在現實情況中使用。書中還回顧了身份驗證技術的當前和未來趨勢。
您將學到什麼
- 在深入身份驗證機制的細節之前,了解密碼學的基本原則
- 熟悉密碼生成背後的理論以及不同類型的密碼,包括圖形密碼和基於網格的密碼
- 了解使用生物識別技術所面臨的問題,特別是在建立合適的生物識別匹配水平或生物識別閾值方面
- 研究多因素身份驗證協議的範例,並清楚其原則
- 了解如何建立身份驗證以及密鑰建立過程如何儘管存在差異而協同工作
- 熟悉當前的互操作性和相容性標準
- 考慮未來的身份驗證技術以解決當前的問題
本書適合誰閱讀
本書適合網路安全從業人員和專業人士、研究人員和講師,以及尋求補充資訊以擴展其身份驗證機制知識的本科生和研究生。
作者簡介
Sirapat Boonkrong has more than 15 fifteen years of experience in the field of information security as a student, researcher, and lecturer. After spending more than 10 years getting his education from high school to PhD in the UK, Sirapat began his career in 2006 as a full-time researcher at the National Electronics and Computer Technology Centre, Thailand. He then moved into full-time teaching at King Mongkut's University of Technology North Bangkok, Thailand and stayed there from 2009 to 2017. Sirapat is currently a full-time lecturer at the School of Information Technology and DIGITECH at Suranaree University of Technology, Thailand. His main teaching and research interests are in cyber security, authentication technologies, and cryptographic protocol design.
作者簡介(中文翻譯)
Sirapat Boonkrong 在資訊安全領域擁有超過十五年的經驗,擔任過學生、研究員和講師。在英國接受教育超過十年,從高中到博士學位後,Sirapat 於 2006 年開始在泰國國家電子與計算機技術中心擔任全職研究員。隨後,他於 2009 年至 2017 年期間轉至泰國北曼谷的國王蒙庫特科技大學全職教學。Sirapat 目前是泰國蘇拉納里科技大學資訊科技學院及 DIGITECH 的全職講師。他的主要教學和研究興趣包括網路安全、身份驗證技術和密碼協議設計。
