Comparison should include
- identification, authentication, authorization, and accounting (AAA)
- multifactor authentication
- something one is
- something one has
- something one knows
- somewhere one is located
- something one does
- federation
- single sign-on
- transitive trust.
Process/Skill Questions:
- What is the difference between authentication and authorization?
- What are the elements of multifactor authentication?
- What are the strengths and weaknesses of multi-factor authentication?
- How does the principle of least privilege mitigate the dangers of single sign-on?
- What is the danger of single sign-on?
- Why might a transitive trust domain design create a security concern for shared files?