Table of Contents
Passwordless authentication
Return to Passwords, Authentication, Identity and Access Management (IAM), Outline of computer security
- Snippet from Wikipedia: Passwordless authentication
Passwordless authentication is an authentication method in which a user can log in to a computer system without entering (and having to remember) a password or any other knowledge-based secret. In most common implementations users are asked to enter their public identifier (username, phone number, email address etc.) and then complete the authentication process by providing a secure proof of identity through a registered device or token.
Passwordless authentication methods typically rely on public-key cryptography infrastructure where the public key is provided during registration to the authenticating service (remote server, application or website) while the private key is kept on a user’s device (PC, smartphone or an external security token) and can be accessed only by providing a biometric signature or another authentication factor which is not knowledge-based.
These factors classically fall into two categories:
- Ownership factors (“Something the user has”) such as a cellular phone, OTP token, smart card or a hardware token.
- Inherence factors (“Something the user is”) like fingerprints, retinal scans, face or voice recognition and other biometric identifiers.
Some designs might also accept a combination of other factors such as geo-location, network address, behavioral patterns and gestures, as long as no memorized passwords are involved.
Passwordless authentication is sometimes confused with multi-factor authentication (MFA), since both use a wide variety of authentication factors, but while MFA is often used as an added layer of security on top of password-based authentication, passwordless authentication does not require a memorized secret and usually uses just one highly secure factor to authenticate identity (i.e., an external security token), making it faster and simpler for users.
"Passwordless MFA" is the term used when both approaches are employed, and the authentication flow is both passwordless and uses multiple factors, providing the highest security level when implemented correctly.
Research It More
Fair Use Sources
Passwords: Password Policies, Password Complexity Requirements, Password Expiration Policies, Password Rotation, Password History, Password Length, Multi-Factor Authentication, Password Managers, Secure Password Storage, Password Hashing Algorithms, Salted Password Hashing, Password Encryption, Password Recovery Processes, Password Reset Procedures, Password Audits, Password Strength Meters, Password Generation Algorithms, Biometric Authentication as Password Replacement, Single Sign-On (SSO) Systems, Two-Factor Authentication Methods, Passwordless Authentication, Social Login Integration, Phishing Resistance Techniques, User Education on Password Security, Account Lockout Mechanisms, Brute Force Attack Prevention, Dictionary Attack Mitigation, Credential Stuffing Defense Strategies, Security Questions for Password Recovery, Email Verification for Password Reset, Mobile Authentication for Password Management, Password Sharing Practices, Compliance Standards for Password Management, Password Synchronization Techniques, Password Aging Policies, Role-Based Password Access Control, Password Change Notifications, Temporary Passwords Handling, Password Encryption at Rest and in Transit, Third-Party Password Manager Security, Password Policy Enforcement Tools, User Behavior Analytics for Password Security, Zero Trust Approach to Password Management, Password Security for Remote Workers, Password Security Auditing Tools, Password Vulnerability Scanning, Automated Password Reset Solutions, Secure Password Exchange Protocols, Password Entropy Measurement
Passwords GitHub, Password topics, Passwordless, Password manager - Password management (LastPass, 1Password), Authentication, Personal identification number (PIN), Single signon, MFA-2FA, Microsoft Hello, Apple Face ID, Facial recognition, Biometric authentication, Iris recognition, Mainframe passwords (IBM RACF, Retinal scan, Eye vein verification, Recognition, Fingerprint recognition, Password cracking, Password hashing, Popular passwords, Strong passwords, Rainbow table, Secrets - Secrets management (HashiCorp Vault, Azure Vault, AWS Vault, GCP Vault), Passkeys, Awesome passwords (navbar_passwords - See also: navbar_iam, navbar_pentesting, navbar_encryption, navbar_mfa)
© 1994 - 2024 Cloud Monk Losang Jinpa or Fair Use. Disclaimers
SYI LU SENG E MU CHYWE YE. NAN. WEI LA YE. WEI LA YE. SA WA HE.