دانلود کتاب احراز هویت و کنترل دسترسی – روش ها و ابزارهای رمزنگاری عملی

The advent of the Internet has allowed for many services and applications, most notably in communications between users, servers, and devices. Unfortunately, this has led to many security challenges and problems. Recent examples include password leakage on large social network sites and defacement of websites. It is, therefore, necessary to study mechanisms that help reduce the risks of different types of attacks. One of those mechanisms is access control, which applies the processes of cryptography, authentication, and key establishment. Thus, this book is written with an attempt to provide a comprehensive coverage on the subject of authentication mechanisms. The book is intended for anyone wishing to understand the basic principles of cryptography and why they form an important part of authentication mechanisms. In addition, it provides readers with theories and examples of existing authentication technologies, which the author hopes will be useful and adaptable in practice. However, this book is not a manual for network or system configurations. Authentication and Access Control: Practical Cryptography Methods and Tools can be used in many ways. It can be used as a self-study reference. It can also be used as a supplementary textbook for computer network security and information security courses. Each chapter of the book consists of a detailed explanation of the topic and diagrams to aid the explanation. Materials and contents in this book are gathered from various sources, including classic and recent research papers, other textbooks, as well as the author’s own research. The author hopes that this book will prove useful to readers who wish to learn more about authentication. The book is divided into eight chapters, all of which are written after an extensive review of literature and the author’s own research as well as teaching experiences. What readers are expected to find in each chapter are as follows: Chapter 1, Introduction to Cryptography, covers the basic principles of cryptography, which forms a part of authentication mechanisms. This chapter is included in this book because it is necessary to understand the basic principles of cryptography prior to getting into the details of authentication mechanisms. Chapter 2, Public Key Infrastructure, introduces a mechanism that is considered the foundation of security for the transactions on the Internet today. It also includes how authentication is carried out prior to creating a secure communication channel. Chapter 3, Methods and Threats of Authentication, explains three main authentication methods as well as some other existing ones. Threats to authentication mechanisms are also discussed. Chapter 4, Password-Based Authentication. Passwords are the most popular and most commonly used authentication mechanism. It is, therefore, necessary to understand different types of passwords and theories behind password generation. This chapter also discusses the principles of secure password storing methods. Chapter 5, Biometric Authentication, includes the discussion of biometric authentication steps together with how the efficiency of biometric-based authentication methods can be measured. This chapter also touches on the problems of biometrics, especially the threshold value. Finally, a method and an example for finding a suitable biometric threshold are illustrated. Chapter 6, Multi-factor Authentication, explains a mechanism known as multi-factor authentication. One-factor authentication has been applied as the main authentication method for some time. It, however, does not come without any security issues. Multi-factor authentication is when more than one method or one type of authentication credential is used in the authentication process. It is increasingly used in verifying a user’s identity to access information systems. This chapter provides an explanation of the principles and examples of multi-factor authentication protocols. Chapter 7, Authentication and Key Establishment Protocols, explains the relationship between authentication and key establishment protocols. Some of the most widely used authentication protocols, including the ones that apply symmetric cryptography and the ones that apply asymmetric cryptography, are provided here. In addition, classic authentication and key establishment protocols are studied so that the same vulnerabilities will not be repeated in the future. Furthermore, basic guidelines for designing an authentication protocol are also presented in this chapter. Chapter 8, Current and Future Trends, is the final chapter of this book. The chapter attempts to look into the future to see how the authentication process will evolve and be developed. Two of the upcoming processes are continuous authentication and cancellable authentication…