Home > Quiz: Next-generation authentication
Quiz:
EMAIL THIS LICENSING & REPRINTS

Quiz: Next-generation authentication

10 May 2007 | SearchSecurity.com

Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   

SearchSecurity.com Security School
This quiz is part of the SearchSecurity.com Identity and Access Management Security School lesson on next-generation authentication. Visit the Next-generation authentication lesson page for additional learning resources.

1. The USB token smart card form factor is the best choice over the ISO 7816 (credit-card sized) smart card form factor for which of the following uses?

  1. Identity badging
  2. Physical access
  3. One-time password (OTP) generation
  4. Scraping ice off of your windshield

2. Which consumer authentication technique evaluates the user's typing (i.e., both the time between keystrokes and the time that a key is pressed) as part of the user authentication process?

  1. Risk analytics
  2. Behavioral biometrics
  3. One-time password (OTP) devices
  4. Mobile PKI

3. Which of the following attack methods does not apply to hardware-based one-time password (OTP) devices?

  1. Harvesting
  2. Man-in-the-middle
  3. Private key malware
  4. Impersonation

4. Which of the following authentication methods would provide the highest level of identity assurance for a Web-based human resources application with SSL enabled on the Web server?

  1. X.509 certificate with private key stored in software
  2. Hardware-based one-time password (OTP) device
  3. X.509 certificate with private key stored on a smart card
  4. Password
  5. Integrated Windows Authentication (IWA), with a password used to initially authenticate to the Windows workstation

5. Which of the following identity-proofing methods provides the highest level of identity assurance in an account-unlocking scenario?

  1. Knowledge-based authentication (KBA) -- favorite color
  2. Automated phone call to registered phone number
  3. Out-of-band email to a registered address
  4. Knowledge-based authentication (KBA) -- elementary school

If you answered two or more questions incorrectly, revisit the materials from SearchSecurity.com's Identity and Access Management Security School lesson, Next-generation authentication:

  • Webcast: The buyers' guide to stronger authentication
  • Tip: How to choose the right smart card
  • Podcast: Countdown -- Top 5 consumer authentication technologies on the market today

    If you answered four or more questions correctly, return to SearchSecurity.com's Identity and Access Management Security School and begin another lesson, or try another school in SearchSecurity.com's Security School Course Catalog.

    Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


    RELATED CONTENT
    Two-Factor and Multifactor Authentication Strategy
    Trends in enterprise identity and access management
    Address Authentication and Transaction Validation Protocols to Stem Identity Theft
    Understanding multifactor authentication features in IAM suites
    SaaS Offering Handles SSO
    Identity Management Suites Enable Integration, Interoperability
    Product review: Secure Computing SafeWord 2008
    Keystroke recognition aids online authentication at credit union
    Fraudsters exploiting multiple financial services channels
    Video: Changes ahead for MIT Kerberos Consortium
    Kerberos security evolves for B2B, mobile tech

    Tokens and Smart Cards
    Product review: Secure Computing SafeWord 2008
    Video: Changes ahead for MIT Kerberos Consortium
    Kerberos: Authentication with some drawbacks
    What are the dangers of using radio frequency identification (RFID) tags?
    How to prevent hack attacks against smart card systems.
    Smart card deployment: How to know if it's smart for your enterprise
    Can tokenization of credit card numbers satisfy PCI requirements?
    Is there a way to bridge physical and logical security without using smart cards or biometrics?
    Preparing for integrated physical and logical access control: The common authenticator
    Are one-time password tokens susceptible to man-in-the-middle attacks?

    Next-generation authentication
    How to choose the right smart card

    RELATED GLOSSARY TERMS
    Terms from Whatis.com − the technology online dictionary
    AAA server  (SearchSecurity.com)
    authentication  (SearchSecurity.com)
    authentication, authorization, and accounting  (SearchSecurity.com)
    federated identity management  (SearchSecurity.com)
    Kerberos  (SearchSecurity.com)
    password hardening  (SearchSecurity.com)
    typeprint analysis  (SearchSecurity.com)

    RELATED RESOURCES
    2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
    Search Bitpipe.com for the latest white papers and business webcasts
    Whatis.com, the online computer dictionary


    • TechTarget Security Media
    Information Security View this month\\'s issue and subscribe today.
    Information Security Decisions Apply online for free conference admission.
    		SearchSecurity.com
    HomeNewsMagazineWebcastsWhite PapersLearningAdviceTopicsEventsAbout Us
    SEARCH :     Advanced Search | Site Index Powered by: Search Powered by Google

    About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
    TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.

    TechTarget Corporate Web Site  |  Media Kits  |  Reprints  |  Site Map




    All Rights Reserved, Copyright 2003 - 2008, TechTarget | Read our Privacy Policy     		  TechTarget - The IT Media ROI Experts