Notes for Computer Information Technology 160
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

nov19.md 1.3KB

November 19

Overview

  • Simple Auth
  • AAA
  • 2-Factor Auth
  • TRUST Communications
  • Encoding/Encryption
  • Base64
  • Digital Signatures
  • CERTS
  • SSH-SSL-TLS
$ nc smtp.example.com 25 # this connection is plaintext
HELO server
200
AUTH LOGIN
200
<base64 steve>
200
<base64 passwd>
  • Certificates have certificate authorities

AAA

  • Authentication (Authn)
    • what you know
      • password
      • security questions
    • what you have
      • physical authenticator
    • who you are
      • biometric data
    • 2-Factor: use 2 of the 3 previous methods
  • Authorization (Authz)
  • Access
  • Accounting

Trust Communications

  • who said it (authentication)
  • ask the source (repudiation)
  • no man-in-the-middle (integrity)

Encrypting and Encoding

  • Encoding - everyone knows how to convert between these types of data
  • Encryption - only a select group of people have the key to convert this data
  • encryption(plaintext, key) = ciphertext
  • decryption(ciphertext, key) = plaintext

Base64 Encoding

$ echo "yeet" | base64
eWVldAo=
$ echo "eWVldAo=" | base64 -d
yeet