3. Classification of authentication methods according to security criteria

Here's an overview of existing methods, listed in ascending order of safety.

3.1 Static password category

This category is currently the most widely used. It does not provide strong user authentication.

A password is said to be "static" (as opposed to dynamic) when it does not change from one transaction to the next. This is the case for most of the passwords we use every day. We memorize it and fill in the "password" field with the same value every time we're asked for it.

Line eavesdropping is one of the most effective attacks on both local corporate networks and the Internet. What's more, it's very difficult to detect. Weak passwords are the other major problem: good passwords are very difficult for users...

You do not have access to this resource.

Exclusive to subscribers. 97% yet to be discovered!

You do not have access to this resource.
Click here to request your free trial access!

Already subscribed? Log in!

The Ultimate Scientific and Technical Reference

A Comprehensive Knowledge Base, with over 1,200 authors and 100 scientific advisors

+ More than 10,000 articles and 1,000 how-to sheets, over 800 new or updated articles every year

From design to prototyping, right through to industrialization, the reference for securing the development of your industrial projects

This article is included in

Safety and risk management

This offer includes:

Knowledge Base

Updated and enriched with articles validated by our scientific committees

Services

A set of exclusive tools to complement the resources

Practical Path

Operational and didactic, to guarantee the acquisition of transversal skills

Doc & Quiz

Interactive articles with quizzes, for constructive reading

Subscribe now!

Ongoing reading
Classification of authentication methods according to security criteria

Previous
page Authentication methods associated with uses

The challenge of authentication on the Internet

Bibliography

(1) - La gestion des identités numériques. - Éd. LAURENT (M.) et BOUZEFRANE (S.), collection ISTE, ISBN : 978-1-78405-056-6 (papier), ISBN : 978-1-78406-056-5 (ebook) (2015).
(2) - BURR (W.), DODSON (D.), NEWTON (E.), PERLNER (R.), POLK (T.), GUPTA (S.), NABBUS...

Conferences

Security and information systems conference https://www.lesassisesdelasecurite.com/

SSTIC – Symposium on information and communications technology security https://www.sstic.org/2017/news/

Standards and norms

Cartes d'identification. Cartes à circuit(s) intégré(s) à contacts. Partie 1 : caractéristiques physiques - ISO/CEI 7816-1 - 1998
Identification cards. Integrated circuit cards. Part 2: contact cards – Contact dimensions and locations - ISO/CEI 7816-2 - 2007