Authentication

Certificates

Certificates are public keys that are signed by a certificate authority or CA as a sign of trust.

LDAP

Lightweight Directory Access Protocol.
An open industry-standard protocol for accessing and maintaining directory services.

RADIUS

Remote Authentication Dial-In User Service is a protocol that provides AAA services for users on a network.
RADIUS servers can verify user authentication information stored in a flat file or can plug into external sources like SQL databases, LDAP, Kerberos or Active Directory.

Kerberos

Kerberos is a network authentication protocol that uses tickets to allow entities to prove their identity over potentially insecure channels to provide mutual authentication.

TICTACS+

TACACS+ is mainly used as an authentication system for network infrastructure devices, which tend to be high value targets for attackers.

SSO

Single Sign-On or SSO is an authentication concept that allows users to authenticate once to be granted access to a lot of different services and applications.

---

Authorization

OAuth

OAuth is an open standard that allows users to grant third-party websites and applications access to their information without sharing account credentials.

ACL

An access control list or ACL, is a way of defining permissions or authorizations for objects.
Network ACLs are used for restricting and controlling access to hoster services running on hosts within your network.

---

Accounting

Accounting

keeping records of what resources and services your users access or what they did when they were using your systems.

Auditing

involves reviewing these records to ensure that nothing is out of the ordinary.