rafaeldff + technet   1

It’s Me, and Here’s My Proof: Why Identity and Authentication Must Remain Distinct
Good thinking. Identity and authorization should always be separate. An application of this principle is that biometrics are about identity and so must be accompanied by a second factor (like a PIN) in a secure system.
SteveRiley  security  software  systems  architecture  authorization  identity  authentication  article  essay  column  Microsoft  TechNet 
january 2009 by rafaeldff

Copy this bookmark:



description:


tags: