# Authentication
Authentication is the process of assuring that the communicating entity/origin of information is what they claim to be

There are two types of authentications:
* Entity authentication:
    * for connection-based communication
    * assuring the identity of the communicating entity
    * eg. password, challenge + response, biometrics
* Data-origin authentication
    * for connectionless communication
    * assuring the identity of the origin of information
    * eg. MAC, digital signature
    
An entity/origin is **authentic** when their identity is assured by some supporting evidence.
Thus, authenticity is the condition of being authentic.

## Authenticity and Integrity
Note that authenticity is related to integrity.

Consider a message that is modified mid-transit (ie integrity is violated), then clearly the message can no longer be authentic since it does not belong to the author.

Thus, we can say that $\lnot I \rightarrow \lnot A$, or by contrapositive, $A \rightarrow I$.

Hence, if a message is authentic, then its integrity is upheld.
In other words, authenticity is a stronger condition than integrity.

## Applications
The issue of authenticity appears in various situations.

### Entity
Suppose I wish to login to a banking system, how does the banking system knows that I am who I claim to be?

Or even when searching for wireless access points, how do we truly know that the access point really is "Starbucks"?

### Data Origin

Suppose a contract is signed by someone, how do we know that the signature is authentic, or the terms of the contract was not modified after signing?

Or that you receive a mail which claims to be from the bank.
How do we ensure that the sender really is from the bank?

## Password
Passwords are a common way to implement an authentication system.

### Process
#### Stage 1: Bootstrapping
* Server establishes a password with each user.
* Server keeps a record of the identity (eg userid, username) and the corresponding password

Bootstrapping can be done by either:
* Server sets a password and sends it to the user via some communication medium, or vice versa.
* Server sets a default password for the user

#### Stage 2: Authentication
* Server authenticates the entity
* If the entity provides the correct password corresponding to the claimed identity, the entity is deemed authentic.

A typical interaction involves:
1. user identifying themselves
2. server giving a password challenge
3. user replies with the password
4. server authenticates the user, authorizing them to perform actions

Alternatively, authentication can be performed without interaction.
For example, the user simply sends their identifier, their password and their desired action to the server, to which the server will process on their side.

The identity does not have to be kept a secret.

The password must be kept a secret, such that only the user and the server knows.
Thus, if an entity knows the secret, it must be either the user or the server.

### Strong/Weak authentication system
A weak authentication system is susceptible to **replay attacks**, where information sniffed from the communication channel can be used to impersonate the user.

A strong authentication system is one where the above is prevent.

Because an attacker can impersonate the user using the credentials sniffed from a previous communication between server and user, password systems are classified as a weak authentication system.

### Attacks on password systems
#### Attacking the boopstrap process
If the bootstrap is performed by sending the desired password through a communication channel, the attacker can steal the password mid-transit if the channel is insecure.

If the bootstrap uses default passwords, the attacker can simply use the default password if they have knowledge of it.
This is a commonly occurring issue where many users of internet-enabled devices (eg webcams) fail to change the default password, leading to these devices being compromised.

#### Password guessing
Attackers can either perform 
* **online guessing**: where they directly interact with the authentication system
* **offline guessing**: where they can verify if their guesses were correct without interacting with the system (ie where they steal the `shadow` file).


To select the guesses, the attacker can either employ:
* Exhaustive search
    * Searches all possible combinations of password
    * Likely to be infeasible due to large keyspace
* Search only the probable passwords
    * Use social information (eg birthdays, phone numbers, pet's name) to reduce the search space
    * Restrict search space to only English words, known compromised passwords, list of weak/common passwords, etc
        * Also known as a dictionary attack

#### Password stealing
Attackers can also gain access to the password simply by obtaining it from the user.

Examples includes:
* Shoulder surfing:
    * Looking at the password as the user is entering them
* Sniffing
    * Listening/intercepting the communication channel
        * Some channels sends information unencrypted, allowing attackers to obtain them by spying on the channel
        * eg FTP, HTTP
* Key logger
    * Captures the keystrokes made by the user and sends it to the attacker
    * Could be software, in the form of a virus, or hardware in the form of a physical key-logger
* Login spoofing
    * Attacker displays a bogus login prompt to the user
    * Attacker steals passwords once the users uses the bogus prompt
* Phishing
    * Similar to login spoofing, where the attacker requests for the user's password via some communication channel.
    * Spear phishing occurs when phishing is targeted at a small group of people
* Abusing of password cache
    * Passwords may be cached at workstations
    * Attackers can access the system using cached credentials
* Insider attack
    * Malicious/Rogue system admins can steal passwords

## Counter Measures
### Use of strong passwords
A password should be chosen among all possible keys randomly.
To ensure the randomness of the password chosen, an **automatic password generator** can be employed.

Many password generators uses a random selection of characters and symbols as the password, making it harder to guess at the cost of being harder to remember as well.
A solution to this is to use a password manager.
There even is a trend of using [xkcd-styled passwords](https://xkcd.com/936/).

### Limit login attempts
Incorporate features that dissuade multiple login attempts.
This attempts to prevent the attacker from bruteforcing the password by trying multiple combinations in quick succession.
These can be implemented by:
* Adding a delay to login session
    * Or apply increasing delay for each incorrect login attempt from the entity, to avoid reducing usability on legitimate users.
    * Add security questions on incorrect login attempt
* Lock the account after a few failed attempts
    * Do note that this can hurt usability by a significant amount
    
### Password checks
System checks for password on across all users.

### Password metering
Determine the strength of the password as suggestion to the user on signup.

### Password ageing
Requires users to change their password regularly.
However, many believe that this actually reduces security due issues regarding frequent password changes.

### Password requirement policy
Enforces that the user's password meet certain requirements on password.
Requirements include, using a strong password, not allowing reuse of old password, etc.

## Protecting the password file
Refer to [hashing](./data_origin_authentication.ipynb#protection-of-passwords).

## Security Questions
Security questions are a form of fallback authentication or self-service password reset.

They have the following characteristics:
* Improve usability, as the user can still login even if they forgot the password
* Reduce cost of operating a helpdesk to service users who lost their passwords
* Weakens security as the attacker has another vector of obtaining access to the system

Ideal properties of security questions are:
* Memorable
    * The user has to have an easy time to recall the answer to the question
* Consistent
    * The user's answer to the question should not change over time. This ensures that the answer that they set will be the same as the answer they reply at the point of password reset.
    * Bad examples includes, "What is the name of your current spouse?"
* Nearly Universal
    * Almost all users should have an answer to the security question
    * Bad examples includes, "What is the name of your first pet?", as not all users may have had pets.
* Safe
    * The answer to the question should not be easily guessable or researchable
    * This has become harder in the age of social media, as many questions can easily be obtained via social media.
    * Bad examples includes, "What is the name of your best friend"?

## ATM
To authenticate at an ATM, the user needs to present both a card and their PIN.

The card serves as identification, while the PIN serves as the password.

However, since the magnetic card uses a well-known standard, attackers can read info off the victim's card to copy it over to a spoofed card.

### ATM Skimmer
Thus, an ATM skimmer aims to steal both the card information and the PIN from the victim.

Hence, they consist of:
1. A card-reader on top of the ATM
2. A camera, or similar mechanism, to capture the PIN being entered by the victim
3. A means of transmitting the information back to the attacker, or the attacker can simply retrieve the stored information from the device after someone falls victim

Thus, with skimmers, attackers can spoof the card and enter the correct PIN to commit fraud.

### Preventive Measures
* Install anti-skimming devices
* Shield the keypad
* User awareness
* Use newer chip-based cards which uses encryption

## Biometric
Biometrics uses a **unique physical characteristic** of a person for authentication.

During **enrollment**, a **reference template** of the user's biometric data is stored in the system (similar to bootstrapping). 

During **verification**, a biometric sample data is captured from the user and compared with the stored template using a **matching algorithm**.

### Matching Error
Unlike password, capturing biometric data will inevitably introduce some noise, which can cause error when making matching decision.

We classify the errors as **False match rate (FMR)** and **False non-match rate (FNMR)**, defined as follows:

$$
FMR = \frac{\text{number of successful false matches}} {\text{number of attempted false matches}} \\
FNMR = \frac{\text{number of successful genuine matches}} {\text{number of attempted genuine matches}}
$$

In general, FMR determines the security of the system, while FNMR determines usability of the system.

Matching algorithm employs some adjustable threshold to the matching amount to make the matching decision.
Thus, we can adjust the FMR and FNMR by adjusting this threshold.
* $\downarrow$ threshold $\rightarrow$ $\downarrow$ FMR, $\uparrow$ FNMR $\rightarrow$ less stringent
* $\uparrow$ threshold $\rightarrow$ $\uparrow$ FMR, $\downarrow$ FNMR $\rightarrow$ more stringent


### Comparison between passwords and biometric data

|   |Password|Biometric|
|:---|:--------|:---------|
|Changeable| Yes | No |
|Requires users to remember| Yes | No |
|Possibility of failing to match| Zero | Some probability of error |
|Authentication data can be transferred to another user| Possible | Impossible|

## n-factor authentication
This is when a system requires more than 1 method of authentication.

A common variant is the **2-factor authentication (2FA)**.

### 2FA

The Monetary Authority of Singapore expects all banks to implement 2FA for e-banking.

This is implemented using either

#### One-time password token
A hardware that generates a one time password.
This hardwares shares a secret with the bank.

They can either be:
* Timing based
    * The password is generated using both the shared secret and the current time
* Sequence based
    * The password follows a fixed sequence, where an event triggers the change of password.
    
#### Mobile phone
Another common way of implementing the one-time password system is to deliver the password via sending a text message to the user's mobile.

However, it is known that this system is not secure.

Possible threats includes:
* Interception of the cellular network channel
* Text messages are usually stored as plaintext by the Short Messaging Service Centers.
* Malware/trojan on the phones

#### Authenticator app
There is a trend of using an specialized apps to do 2FA.