Presentation is loading. Please wait.

Presentation is loading. Please wait.

CSCE 201 Identification and Authentication Microsoft support Fall 2010.

Published byLora Hamilton Modified over 9 years ago

Similar presentations

Presentation on theme: "CSCE 201 Identification and Authentication Microsoft support Fall 2010."— Presentation transcript:

1 CSCE 201 Identification and Authentication Microsoft support Fall 2010

2 CSCE 201 - Farkas2 One-time Password Use the password exactly once!

3 CSCE 201 - Farkas3 Time Synchronized There is a hand-held authenticator – It contains an internal clock, a secret key, and a display – Display outputs a function of the current time and the key – It changes about once per minute User supplies the user id and the display value Host uses the secret key, the function and its clock to calculate the expected output Login is valid if the values match

4 CSCE 201 - Farkas4 Time Synchronized Secret key Time One Time Password Encryption

5 CSCE 201 - Farkas5 Challenge Response Work station Host Network Non-repeating challenges from the host is used The device requires a keypad User ID Challenge Response

6 CSCE 201 - Farkas6 Challenge Response Secret key Challenge One Time Password Encryption

7 CSCE 201 - Farkas7 Devices with Personal Identification Number (PIN) Devices are subject to theft, some devices require PIN (something the user knows) PIN is used by the device to authenticate the user Problems with challenge/response schemes – Key database is extremely sensitive – This can be avoided if public key algorithms are used

8 CSCE 201 - Farkas8 Smart Cards Portable devices with a CPU, I/O ports, and some nonvolatile memory Can carry out computation required by public key algorithms and transmit directly to the host Some use biometrics data about the user instead of the PIN

9 CSCE 201 - Farkas9 Biometrics Fingerprint Retina scan Voice pattern Signature Typing style

10 CSCE 201 - Farkas10 Problems with Biometrics Expensive – Retina scan (min. cost) about $ 2,200 – Voice (min. cost) about $ 1,500 – Signature (min. cost) about $ 1,000 False readings – Retina scan 1/10,000,000+ – Signature 1/50 – Fingerprint 1/500 Can’t be modified when compromised

11 CSCE 201 - Farkas11 Home Computer Security

12 CSCE 201 - Farkas12 Required reading: Forgotten your Windows XP Home password? - Part 1: Introduction, http://support.microsoft.com/kb/894900http://support.microsoft.com/kb/894900 Forgotten your Windows XP Home password? - Part 2: Using a password reset disk, http://support.microsoft.com/kb/894901/en- ushttp://support.microsoft.com/kb/894901/en- us Forgotten your Windows XP Home password? - Part 3: Setting a new password as an administrator, http://support.microsoft.com/kb/894902/en-us http://support.microsoft.com/kb/894902/en-us

13 CSCE 201 - Farkas13 Problem: You don’t remember your password Solutions: 1. Verify that you have typed the letters of your password in the correct case 2. Access a password hint on the Welcome screen 3. Use a password reset disk 4. Log on as administrator to assign a new password to your account

14 CSCE 201 - Farkas14 Password Case Sensitivity Check CAPS LOCK key Question: Why do you want to use combination of symbols for your password?

15 CSCE 201 - Farkas15 Use a Password Hint Create a password hint: – Log on to your computer – Click Start, and then click Control Panel – Double-click User Accounts – Click your user account, and then click Change my password – Enter your current password, enter a new password, and then enter the new password again to confirm it – Enter the password hint, and then click Change Password – The change will take effect the next time that you log on To display the hint, click the question mark (?) that is next to your user account

16 CSCE 201 - Farkas16 Create a Password Reset Disk Click Start, and then click Control Panel Double-click User Accounts Click your user account, and then click Prevent a forgotten password. The Forgotten Password Wizard starts Follow the instructions NOTE: A password reset disk is valid until you create a new one; even if you change your password

17 CSCE 201 - Farkas17 Using the Password Reset Disk Create a password reset disk for your user account at the earliest opportunity How to use the password reset disk – Microsoft Windows remembers if you have created a password reset disk. Just click use your password reset disk – Follow the instructions of the Password Reset Wizard Question: Why should you safeguard your password reset disk?

18 CSCE 201 - Farkas18 Set a New Password as an Administrator Start the computer in Safe Mode Log on as administrator – first time login as administrator: no password assigned to the account Reset the password

19 CSCE 201 - Farkas19 Reset the Password Click Start, click Control Panel, and then double-click User Accounts Click your user account, and then click Change the password Enter a new password, enter it again to confirm the password, and then set a password hint. Click Change Password Set a password for the administrator account if you had none Question: Why is it recommended that you assign a password to the Administrator account?

20 CSCE 201 - Farkas20 Beware of Social Engineering! Kevin Mitnick story T. Espiner: Newsmaker: Kevin Mitnick, the great pretender, CNET News, 2006, http://news.cnet.com/Kevin-Mitnick,-the-great- pretender/2008-1029_3-6083668.html http://news.cnet.com/Kevin-Mitnick,-the-great- pretender/2008-1029_3-6083668.html T. Shimomura and J. Markoff, Takedown: The Pursuit and Capture of Kevin Mitnick, America's Most Wanted Computer Outlaw-By the Man Who Did It, 1996, http://www.amazon.com/Takedown-Pursuit-Americas- Computer-Outlaw/dp/0786889136 http://www.amazon.com/Takedown-Pursuit-Americas- Computer-Outlaw/dp/0786889136 Question: Would you hire a reformed hacker to maintain your security?

21 Next Class Access Control An Introduction to Computer Security: The NIST Handbook, http://csrc.nist.gov/publications/nistpubs/800-12/handbook.pdf : Chapter 17, LOGICAL ACCESS CONTROL, pages 194 - 207 http://csrc.nist.gov/publications/nistpubs/800-12/handbook.pdf Microsoft support, Use access control to restrict who can use your files, 2001, 2005, http://www.microsoft.com/windowsxp/using/security/learnmore/accesscontrol.mspx http://www.microsoft.com/windowsxp/using/security/learnmore/accesscontrol.mspx Sudhakar Govindavajhala and Andrew W. Appel, Windows Access Control Demystied, 2006, http://www.cs.princeton.edu/~appel/papers/winval.pdfhttp://www.cs.princeton.edu/~appel/papers/winval.pdf

Download ppt "CSCE 201 Identification and Authentication Microsoft support Fall 2010."

Similar presentations

Digital Certificate Installation & User Guide For Class-2 Certificates.

Digital Certificate Installation & User Guide For Class-2 Certificates.
Installation & User Guide

Installation & User Guide
Digital Certificate Installation & User Guide For Class-2 Certificates.

Digital Certificate Installation & User Guide For Class-2 Certificates.
Security Security comes in three forms. 1.Encryption – making data and information transmitted by one person unintelligible to anyone other than the intended.

Security Security comes in three forms. 1.Encryption – making data and information transmitted by one person unintelligible to anyone other than the intended.
Two-Factor Authentication & Tools for Password Management August 29, 2014 Pang Chamreth, IT Development Innovations 1.

Two-Factor Authentication & Tools for Password Management August 29, 2014 Pang Chamreth, IT Development Innovations 1.
Help! I Forgot My Password for ADP Self Service!

Help! I Forgot My Password for ADP Self Service!
15 Tactical Improvements to IT Security Virtual Keyboard, Two Factor Authentication, Active Confirmation and FAA Access to CPS Online Ganesh Reddy.

15 Tactical Improvements to IT Security Virtual Keyboard, Two Factor Authentication, Active Confirmation and FAA Access to CPS Online Ganesh Reddy.
Password Reset Instructions PART 1 The following set-up tasks must be performed first in order to use the Automated Password Reset feature. 1.Log into.

Password Reset Instructions PART 1 The following set-up tasks must be performed first in order to use the Automated Password Reset feature. 1.Log into.
CSC 474 Information Systems Security

CSC 474 Information Systems Security
Welcome to Florida International University Online J.O.B.S. Link Applicant Tutorial.

Welcome to Florida International University Online J.O.B.S. Link Applicant Tutorial.
16.1 © 2004 Pearson Education, Inc. Exam 70-294 Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.

16.1 © 2004 Pearson Education, Inc. Exam Planning, Implementing, and Maintaining a Microsoft® Windows® Server 2003 Active Directory Infrastructure.
Chapter 12: Authentication Basics Passwords Challenge-Response Biometrics Location Multiple Methods Computer Security: Art and Science ©2002-2004 Matt.

Chapter 12: Authentication Basics Passwords Challenge-Response Biometrics Location Multiple Methods Computer Security: Art and Science © Matt.
第十章 1 Chapter 10 Authentication of People. 第十章 2 Introduction This chapter deals with password-related issues like how to force users to choose unguessable.

第十章 1 Chapter 10 Authentication of People. 第十章 2 Introduction This chapter deals with password-related issues like how to force users to choose unguessable.
95752:3-1 Access Control. 95752:3-2 Access Control Two methods of information control: –control access –control use or comprehension Access Control Methods.

95752:3-1 Access Control :3-2 Access Control Two methods of information control: –control access –control use or comprehension Access Control Methods.
CS470, A.SelcukAuthentication Systems1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.

CS470, A.SelcukAuthentication Systems1 CS 470 Introduction to Applied Cryptography Instructor: Ali Aydin Selcuk.
1 Welcome to the Colgate University Online Employment System Applicant Tutorial.

1 Welcome to the Colgate University Online Employment System Applicant Tutorial.
CSCI 530 Lab Authentication. Authentication is verifying the identity of a particular person Example: Logging into a system Example: PGP – Digital Signature.

CSCI 530 Lab Authentication. Authentication is verifying the identity of a particular person Example: Logging into a system Example: PGP – Digital Signature.
Security systems need to be able to distinguish the “white hats” from the “black hats”. This all begins with identity. What are some common identifiers.

Security systems need to be able to distinguish the “white hats” from the “black hats”. This all begins with identity. What are some common identifiers.
Authentication Approaches over Internet Jia Li

Authentication Approaches over Internet Jia Li
Chapter 10: Authentication Guide to Computer Network Security.

Chapter 10: Authentication Guide to Computer Network Security.

Similar presentations

Ads by Google