Organizations achieve multi-factor authentication by combining authentication approaches from two different categories. The most common approach is to combine something you know, such as a password or PIN, with something you have, such as a physical token. In this video, learn how you can implement authentication based upon something the user has in his or her possession.
- In the last video you learned how organizations…achieve multi-factor authentication by combining…authentication approaches from two different categories.…The most common approach is to combine…something you know, such as a password or PIN,…with something you have, such as a physical token.…Let's talk about ways that you can implement authentication…based upon something the user has in his or her possession.…Traditionally, organizations implemented something you have…authentication using physical tokens like this one.…
They're small hardware devices…that the user typically carries on a key chain.…When the need to authenticate arises…the user first provides a user name and password…satisfying the something you know criteria.…The system then prompts the user…to provide an authentication code.…The user pulls out his or her token and presses the button.…The token then displays a code that the user enters…into the system proving physical possession of the token…and completing the authentication sequence.…The cost to providing thousands of users…
You can sign up for Mike's free study group at certmike.com, and find his study guides at the Sybex test prep site. To review the complete CISSP Body of Knowledge, visit https://www.isc2.org/cissp-domains/default.aspx.
Note: This course is part of a series releasing throughout 2018. A complete learning path will be available once all the courses are released.
- Identity and access management overview
- Identification mechanisms: user names, access cards, biometrics, and registration
- Authentication factors
- Password authentication protocols
- Identity as a service (IDaaS)
- Enforcing accountability
- Managing credentials with policies
- Using access control lists
- Defending against access control attacks
Skill Level Advanced
1. Identity and Access Management
5. Credential Management
7. Access Control Attacks
- Mark as unwatched
- Mark all as unwatched
Are you sure you want to mark all the videos in this course as unwatched?
This will not affect your course history, your reports, or your certificates of completion for this course.Cancel
Take notes with your new membership!
Type in the entry box, then click Enter to save your note.
1:30Press on any video thumbnail to jump immediately to the timecode shown.
Notes are saved with you account but can also be exported as plain text, MS Word, PDF, Google Doc, or Evernote.