Chapter 1: Introduction to Cryptography
Covers basic principles of cryptography which forms a part of authentication mechanisms. This chapter is included in this book because it is necessary to understand basic principles of cryptography prior to getting into the detail of authentication mechanisms.
What is "Security"?
The CIA Model
Principles of Cryptography
Symmetric Cryptography
Asymmetric Cryptography
Hybrid Cryptosystem
Cryptographic Hash Functions
Digital Signature
Chapter 2: Public Key Infrastructure
It is not possible to have a book on authentication without mentioning public key infrastructure (PKI), which is the foundation of security mechanisms for transactions on the Internet. The aim of this chapter is the understanding of the process and components, especially certificate authorities and digital certificates, which are necessary in many of today's authentication technologies. PKI's Uses and Benefits
PKI Framework
Certificate Exchange
PKI Process
Chapter 3: Methods and Threats of Authentication
Brings the readers into the world of authentication with an introduction to different authentication methods including the widely accepted something-you-know, something-you-have and something-you-are. Unfortunately, they are not without any security problems. The chapter, therefore, provides explanation of potential threats to these authentication technologies, too. What is Authentication?
Factors of Authentication
Something You Know
Something You Have
Something You Are
Other Factors of Authentication
Threats of Authentication
Chapter 4: Password-Based Authentication
Passwords are the most popular and most commonly used authentication mechanism. It is, therefore, necessary to understand theories behind password generation and different types of passwords, including graphical and grid-based passwords. One of the main aims of this chapter is to explain the problems with traditional passwords and newly studied problem with grid-based passwords. This chapter also discusses the principles of secure password storing methods during which a new and more secure storing scheme is introduced. Passwords
Storing Passwords
Dynamic Salt Generation and Placement
Grid-Based Passwords
Chapter 5: Biometric Authentication
In recent years, we have seen that authentication technologies have stepped into the field of biometrics. Biometric authentication is discussed together with how the efficiency of biometric-based authentication methods can be measured. This chapter also touches on the problems of biometrics, especially the suitable level of biometric matching or the biometric threshold value. Finally, a method and an example for finding a suitable biometric threshold is illustrated. What is Biometrics?
Biometric Authentication
Performance Metrics of Biometric Authentication
Finding a Biometric Threshold
Biometric Authentication Use Cases
Chapter 6: Multi-Factor Authentication
Explains a mechanism known as multi-factor authentication. It has become a well-known fact that one-factor authentication, especially the password-only authentication method is not adequate enough. Multi-factor authentication is when more than one method or one type of authentication credential is used in the authentication process. It is increasingly used in verifying user's identity to access information systems with the belief that it provides better security. This chapter provides the explanation of the principles and examples of multi-factor authentication protocols. Issues with Traditional Authentication
Two-Factor A
About the Author:
Sirapat Boonkrong has more than 15 fifteen years of experience in the field of information security as a student, researcher, and lecturer. After spending more than 10 years getting his education from high school to PhD in the UK, Sirapat began his career in 2006 as a full-time researcher at the National Electronics and Computer Technology Centre, Thailand. He then moved into full-time teaching at King Mongkut's University of Technology North Bangkok, Thailand and stayed there from 2009 to 2017. Sirapat is currently a full-time lecturer at the School of Information Technology and DIGITECH at Suranaree University of Technology, Thailand. His main teaching and research interests are in cyber security, authentication technologies, and cryptographic protocol design.
