The document discusses access control and authentication methods. It introduces the concepts of authentication, authorization, and accounting (AAA or triple A). Authentication verifies a user's identity, authorization controls access to resources, and accounting tracks resource usage. Common authentication methods include passwords, tokens, biometrics. RADIUS and Kerberos are authentication protocols that relate to triple A. The document provides examples and asks readers to explain concepts like triple A and draw diagrams related to wireless access and Kerberos authentication.
1. Access control
ITT3
2012 Autumn
Morten Bo Nielsen – mon@eal.dk 1/11
2. Getting access
Apt-get install UserAndPasswdHandler
and we're done for Today
go home
Morten Bo Nielsen – mon@eal.dk 2/11
3. Once we know who you are....
Confidentiality
Integrity
Availability
Morten Bo Nielsen – mon@eal.dk 3/11
4. Tripple A
Authentication
Authorization
Accounting
Morten Bo Nielsen – mon@eal.dk 4/11
5. Something you know: RADIUS
We are doing RADIUS (or something similar) on
the EAL wireless.
● What is RADIUS?
● How does it relate to tripple A?
● Do a rough diagram of connecting wirelessly
to the internet.
Morten Bo Nielsen – mon@eal.dk 5/11
6. Authentication
The big
question:
How do you tell
you are you?
And you have many “identities”
Yes, this is Dr. Who! (from the remake)
Morten Bo Nielsen – mon@eal.dk 6/11
10. Exercise: Kerberos
● How does it work?
● Describe using
Tripple A
● Do a rough diagram
Cerberus guarding the entrance to the third circle
of hell (Gluttony) according to the Divine comedy.
(and that is completely unrelated, but cool anyway)
Morten Bo Nielsen – mon@eal.dk 10/11
11. Credits & licences
● Content by Morten Bo Nielsen
License: Creative Commons Attribution-NonCommercial-ShareAlike 3.0
Unported License. (http://creativecommons.org/licenses/by-nc-sa/3.0/)
● EAL logo might be an issue, please check before you use it
● Images: Green checkmark, Bean counter, Dr Who, Dante, Password, Iris,
RSA token, Access denied.
Morten Bo Nielsen – mon@eal.dk 11/11