Question - What do you understand about Authentication and Authorization? What are the different types of authentication?
Answer -
The process of getting credentials from users and validating their authenticity is known as authentication. The process of granting access to authenticated resources is known as authorization. The authorization follows Authentication and authorization can be done in various ways, for instance, users can be authorised to have various kinds of access to the application such as READ ONLY access, Write Access, Delete Access, etc. Both application architects and developers are concerned about authentication. Applications that store sensitive data must be safeguarded against hostile assaults and competitors attempting to steal data or intellectual property. When building a security model for your application, keep in mind the business needs for authentication as well as the impact that a security model choice can have on performance, scalability, and deployment.
Authentication can be divided into various categories:
- Windows Authentication
- Passport Authentication
- Form Authentication
- Anonymous Authentication
- Basic Authentication
- Digest Authentication
- Port Authentication
- Certificate Authentication
- Using Cookies