Authentication Factors
taxonomy
Classification Objective
The objective of this classification is to inventory, characterize and compare authentication factors.
TODO
- Compile a quick version 1 of the list
- Complete it with a literature review
- List the key properties to characterize items
Classification
Class | Sub-class | Comments | Sources |
|---|---|---|---|
Biometric Authentication | |||
Facial Recognition | |||
Fingerprint Scan | |||
Iris Scanner | |||
Voice Identification | |||
Certificate-based Authentication | |||
One-Time Passcode | |||
Email OTP | |||
Physical Token OTP | |||
Software / App OTP | |||
SMS OTP | |||
Voice OTP | |||
Password | |||
Security Question | |||
Single Sign-On (SSO) | |||
Token-based Authentication | Session authentication |
Standards
- Compile a list of authentication standards, even obsolete ones, then map these to the authentication methods
Password Authentication Protocol (PAP)
Challenge Handshake Authentication Protocol (CHAP)
Extensible Authentication Protocol (EAP)
IP Security (IPSec)
Kerberos
OAuth
OpenID Connect
SAML
U2F
WebAuthN
