Identification, Authentication and Authorization

Applied Cryptography Robust Software Quantum Safety Machine Learning Applied to Security Analysis and Exploration of Vulnerabilities Computer Systems Forensic Analysis Reverse Engineering Identification, Authentication and Authorization Secure Execution Environments Direito da Organização e da Segurança

Identification, Authentication and Authorization
Access Control Models
OAuth 2.0 Authorization Framework
Linux Security Mechanisms
Authentication Protocols
PAM (Pluggable Authentication Modules)
FIDO and FIDO2 framework
Authentication with Trusted Third Parties / KDCs
Identity Management
Anonymity and Privacy

Powered by GitBook

On this page

Resource owner
Resource server
Client
Authorization server

Roles (RFC 6749)

PreviousGoal NextCommunication endpoints

Last updated 7 months ago

Resource owner

An entity capable of granting access to a protected resource.
End-user: a resource owner that is a person.

Resource server

The server hosting protected resources.
Capable of accepting and responding to protected resource requests using access tokens.

Client

An application makes requests for protected resources on behalf of the resource owner and with its authorization.

Authorization server

The server issues access tokens to the client after successfully authenticating the resource owner and obtaining its authorization for the client to access one of its resources.