Authentication Factors
taxonomy
Classification Objective
The objective of this classification is to inventory, characterize and compare authentication factors.
TODO
- Compile a quick version 1 of the list
- Complete it with a literature review
- List the key properties to characterize items
Classification
Class | Sub-class | Comments | Sources |
---|---|---|---|
Biometric Authentication | |||
Facial Recognition | |||
Fingerprint Scan | |||
Iris Scanner | |||
Voice Identification | |||
Certificate-based Authentication | |||
One-Time Passcode | |||
Email OTP | |||
Physical Token OTP | |||
Software / App OTP | |||
SMS OTP | |||
Voice OTP | |||
Password | |||
Security Question | |||
Single Sign-On (SSO) | |||
Token-based Authentication | Session authentication |
Standards
- Compile a list of authentication standards, even obsolete ones, then map these to the authentication methods
- Password Authentication Protocol (PAP)
Challenge Handshake Authentication Protocol (CHAP)
Extensible Authentication Protocol (EAP)
IP Security (IPSec)
Kerberos
OAuth
OpenID Connect
Password Authentication Protocol (PAP)
SAML
Shiva PAP (SPAP)
U2F
WebAuthN