[cap-talk] What we have here is a failure to communicate
David-Sarah Hopwood
david.hopwood at industrial-designers.co.uk
Thu Dec 18 14:51:31 EST 2008
Karp, Alan H wrote:
> If you're wondering why we can't make ourselves understood to
> security practitioners, consider the following definition from
> page 55 of the December 2008 issue of CACM.
>
> "Authentication: Security measure designed to establish the
> validity of a transmission, message, or originator or a means
> of verifying an individual's authority to receive specific
> categories of information"
:-)
Raoul Duke wrote:
> I guess, statistically, they are in good company; most folks conflate
> the two all too often?
>http://en.wikipedia.org/wiki/Authentication#Authentication_vs._authorization
Gack, when even a sentence starting:
"However, more precise usage describes authentication as ..."
gets it wrong, you know you're in trouble.
(The most important mistake was using "person" instead of "subject"; I've
now fixed that.)
--
David-Sarah Hopwood
More information about the cap-talk
mailing list