by Alexander | 8 October 2024
Dual authentication or two-factor authentication (2FA) is a security method that requires two distinct types of identification to access an account, an application or a system.
Two-factor authentication (2FA) is a security measure that strengthens the protection of online accounts by requiring two distinct forms of identification before granting access. This method adds an extra layer of security beyond the simple password, making it much more difficult for unauthorised people to access sensitive information.
by Alexander | 18 October 2024
AAA stands for Authentication, Authorization, Accounting, and is a security framework that controls access to IT resources, applies security policies and audits their use.
AAA and its combined processes play a major role in network management and cybersecurity by selecting users and monitoring their activity while they are connected.
The AAA framework and the resulting AAA security apply to various concepts:
AAA Framework: this is the set of mechanisms and processes that implement the Authentication, Authorisation and Audit functions. It defines the architecture and components needed to control access to resources and ensure traceability of actions.
AAA Server: a dedicated server that centralises AAA functions. As an identity and access management (IAM) tool, an AAA server receives authentication requests, verifies credentials, authorises access according to defined policies and logs events for auditing purposes. RADIUS and TACACS+ are examples of protocols used by AAA servers.
AAA Protocol: communication protocol used to transport authentication, authorisation and audit information between clients (e.g. a router or Wi-Fi access point) and the AAA server. The most common examples are RADIUS, TACACS+ and Diameter.
AAA Client: network equipment (router, switch, access point, etc.) or an application that initiates authentication requests to the AAA server.
AAA Service: global service that provides authentication, authorisation and audit functions. It encompasses the infrastructure, protocols and policies in place.
by Alexander | 12 September 2024
An ACL (Access Control List) is a set of rules that determine what types of network traffic and operations (read, write, execute, etc.) are allowed through a network device.
by Alexander | 12 September 2024
Active Directory (AD) is a directory service developed by Microsoft for Windows Server operating systems. It is a hierarchical, distributed database that stores information about network objects such as users, computers, groups and resources.
by Alexander | 12 September 2024
ANSSI (Agence Nationale de la Sécurité des Systèmes d'Information) is the French national authority for cyber security.
