Skip to main content
Back to Tags

Identity Auth

57 items tagged with "identity-auth"

Filter by type:

FAQs10

FAQ

What is the difference between OAuth 2.0 and OpenID Connect?

OAuth 2.0 is an authorization framework: it lets an application obtain delegated access to resources on a user's behalf without sharing the user's cre...

FAQ

What is a JWT?

A JSON Web Token (JWT) is a compact, URL-safe token format that carries claims as a base64url-encoded header, payload, and signature separated by dots...

FAQ

Sessions vs tokens: what is the difference for authentication?

Session-based authentication stores state on the server and gives the client an opaque session ID, usually in a cookie; the server looks up the sessio...

FAQ

What is the difference between an access token and a refresh token?

An access token is a short-lived credential a client sends with each request to prove it is authorized to call an API, typically expiring in minutes. ...

FAQ

What is an API key and how is it different from a token?

An API key is a static secret string that identifies and authenticates a calling application or project, usually passed in a header and tied to a set ...

FAQ

What is zero trust security?

Zero trust is a security model that assumes no user, device, or network is inherently trustworthy, even inside the corporate perimeter. Every access r...

FAQ

What is the principle of least privilege?

The principle of least privilege (PoLP) states that every user, process, or system should have only the minimum permissions required to perform its ta...

FAQ

What is multi-factor authentication (MFA)?

Multi-factor authentication requires a user to present two or more independent proofs of identity from different categories: something you know (a pas...

FAQ

What is the difference between OAuth 2.0 and OpenID Connect?

OAuth 2.0 is an authorization framework that lets an application obtain delegated, scoped access to a user's resources without sharing their password,...

FAQ

What is the difference between RBAC and ABAC?

RBAC (role-based access control) grants permissions based on a user's assigned role, such as admin or editor, which is simple to manage and audit but ...

Glossaries12

Glossary

Secret (Kubernetes)

A Kubernetes Secret is an object for storing and distributing small amounts of sensitive data, such as passwords, tokens, and keys, to pods with tighter handling than ordinary configuration.

Glossary

Zero Trust

Zero trust is a security model that assumes no user, device, or network is inherently trustworthy and requires continuous verification of every access request, regardless of its origin.

Glossary

Principle of Least Privilege

The principle of least privilege is a security practice that grants each user, process, or system only the minimum access rights needed to perform its task, and no more.

Glossary

Asymmetric Encryption

Asymmetric encryption is a cryptographic method that uses a mathematically linked pair of keys, a public key and a private key, where data encrypted with one key can only be decrypted with the other.

Glossary

Public Key Infrastructure (PKI)

Public key infrastructure is the system of certificate authorities, digital certificates, and policies used to issue, manage, and validate public keys, binding them to verified identities.

Glossary

OAuth 2.0

OAuth 2.0 is an authorization framework that lets an application obtain limited access to a user's resources on another service without exposing the user's credentials, by using access tokens.

Glossary

OpenID Connect (OIDC)

OpenID Connect is an authentication layer built on top of OAuth 2.0 that lets applications verify a user's identity and obtain basic profile information using an ID token.

Glossary

JSON Web Token (JWT)

A JSON Web Token is a compact, URL-safe, digitally signed token that encodes claims as JSON, commonly used to transmit identity and authorization data between parties.

Glossary

Multi-Factor Authentication (MFA)

Multi-factor authentication is a security method that requires two or more independent forms of verification, drawn from different categories, before granting access.

Glossary

Single Sign-On (SSO)

Single sign-on is an authentication scheme that lets a user log in once and gain access to multiple independent applications without re-entering credentials for each.

Glossary

Role-Based Access Control (RBAC)

Role-based access control is an access model that assigns permissions to roles rather than individuals, and grants users access by assigning them roles.

Glossary

Attribute-Based Access Control (ABAC)

Attribute-based access control is an access model that grants or denies access by evaluating policies against attributes of the user, resource, action, and environment.