Authentication is the act of verifying a user's identity against a target system. Not to be confused with authorization, which simply verifies whether or not a user has the relevant privileges to access resources in a given system. Authentication in a web portal
, for example, compares the username and password supplied by the user, with those held by the portal, in order to determine if that user has provided proper credentials for access. A hacker
can sometimes recover these credentials through nefarious methods in order to spoof the system into giving them access as a trusted user.
Last updated Thursday, 05-Apr-2012 12:09:34 MDT