The fact that the password
management is buried deep in the network infrastructure, often
even at the operating system level, guarantees that at least the
most basic of the attacks described in the section ???Malware and
Identity Theft??? are de?¬‚ected.
In summary, we can obtain a far from perfect but fairly secure
authentication and authorization system. It is then natural to ask
ourselves why we don??™t often hear of local network breaks,
whereas phishing regularly makes it into the news.
Decline
After the local network came the Internet, and online services
proliferated as described in the ???The Rush to Web 2.0 and Asset
Virtualization??? section. At the time, the password had already
gained its fame as the key (if not only) method of verifying credentials.
As it was natural to extend its usage from blind credentials
to local network authentication, it was natural to use it as a
system for restricting access to remote resources and methods. It
was at this point that the problems started; old solutions are not
necessarily ?¬?t for coping with new challenges.
A local network has an underlying authority, which permeates
the entire environment and is the ultimate judge on resource
access.
Pages:
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81