We brie?¬‚y describe them in the section ???Issued
Token??“Based Authentication Schemes.??? We also take the opportunity
to introduce the concept of federation.
Those practices do not really present inherent ?¬‚aws like passwords
do. Sure, some require more infrastructure than others,
some are cryptographically stronger than others, and so on. But
in the end, they all are very successful techniques, and used in
the context in which they are meant to operate, they do an excellent
job.
Note the qualifying phrase ???in the context in which they are
meant to operate.???
As hinted at the beginning, those techniques were developed for
dealing with cases where the defects of passwords were unacceptable.
That very often means peculiar scenarios with strong
IT infrastructure, such as enterprise resource access, governance
of large-scale resource deployments, business partnership management,
and so on. Because they all solve their own special
?¬‚avor of the authentication problems, those schemes are quite
different from each other and can??™t usually interoperate without
bridges or expensive, brittle integration layers. When the global
network was made up of many company islands sparsely connected,
that wasn??™t an issue.
Pages:
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117