+ 13

What is the actual differences between authentication and authorization?

13th Aug 2019, 2:51 AM
Prince Raj
Prince Raj - avatar
16 Answers
+ 13
Information security is essential for almost all automated systems. Authentication and authorization are two mechanisms used in these systems to secure information. Authentication is used to identify a particular user in order to let him access a system. After authenticating the user to the system, authorization provides the necessary limits and accesses the user has. These policies are defined in a firewall or an Access Control List on a file server. Authorization applies only to authenticated users.
13th Aug 2019, 7:36 AM
SuMiT SaThi
SuMiT SaThi - avatar
+ 8
First a user is authenticated, then authorized... They define progressive security layers... Authentication may be secure like SSL or RSA...🤔
13th Aug 2019, 5:16 AM
Sanjay Kamath
Sanjay Kamath - avatar
+ 8
authentication is just checking the login credentials. Authorization differentiates the role of the user( ex. USER or ADMIN)
13th Aug 2019, 7:36 AM
Sai Ram
+ 7
Autentication : - Who are you? Autorization: - what you can do?
14th Aug 2019, 12:51 AM
guillem ardanuy
guillem ardanuy - avatar
+ 6
Authentication is about "Who you are", authorization is "given you're who you say to be, what you're allowed to do"
13th Aug 2019, 1:52 PM
Paolo De Nictolis
Paolo De Nictolis - avatar
+ 6
Authorization comes to play when you are given some privileges or can perform some sets of functions based on your access status. For instance, if you log in as a regular person, you can be granted access to some features other than that of a VIP or premium person. Or you could be given access to a particular feature of a system by permission WHILE Authentication is a form of validation or "screening" based on rendered or inputted data in order to confirm or meet with laid down requirements in a system. It could serve as an access way. For instance, if a user is meant to input just his first name in an input field, if he/she does so, he/she will be granted access but will be denied access if otherwise. That process, hence is known as Authentication
13th Aug 2019, 11:14 PM
Edinyanga Ottoho
Edinyanga Ottoho - avatar
+ 6
Let me tell a story. I was at train station waiting for my train. At the time, I was standing near a food stall, when an old man approached me and asked me to buy him a food. How I responded him, can you guess? Let me you about me, I never help who doesn't need help, but give everything I have, if it essential for needy ones. Let us come back to story, first I authenticated him that he has no money just by seeing his eyes and how he approached... yes, everyone authenticates the claim of having no money to take next step whether to help someone or not... This is authentication, that he has no money, but still we don't know he is needy one or not, whether we going to help him or not, which is next step... According to me, beggars are hopeless people and lazy people, but the old man who approached me isn't a beggar, so I authorized him as not a beggar, so final step is whether I going to help him or not, which will be based whether he is really a food needy one or not... yeah he is really a food needy one, he never asked me any money further after I bought him a food... Here I completely authorized him to have my help in getting his food... So authentication is used to verify whether credentials is true or not, if true then authorized to access certain features like I authenticated the old man for not having money, then only I authorized him to have my help based on some morals... If your morals aren't concrete and wise, then you'll be get fooled by imposters... LOL.
14th Aug 2019, 8:12 AM
Ve Sudhakaran
+ 5
From the discussion of all peers in short we can say, Authorization is a only a permission of grant access or some limit given within any organization (may be super admin) to particular user or employee, whereas authentication is the system procedure within the organization of verification of that given authority.... Authorization :- permission of grant access Authorization :- verification of that grant permission Thank you very much all of you have cleared my doubt 👏🙌🙏🏼
13th Aug 2019, 11:52 AM
Prince Raj
Prince Raj - avatar
+ 5
Identification occurs when a subject claims an identity (such as with a username) and authentication occurs when a subject proves their identity (such as with a password). Once the subject has a proven identity, authorisation techniques can grant or block access to objects based on their proven identities.
14th Aug 2019, 12:32 AM
Jacob Riggs
Jacob Riggs - avatar
+ 4
Authorisation spells out the extent to which a user is allowed to access a resource. Authentication on the other hand spells out the credentials given to a particular user so as to access a resource/system
13th Aug 2019, 7:06 AM
Lazarus Mbofana
Lazarus Mbofana - avatar
+ 4
To Authenticate is to Verify a persons Account, email and Identification To Authorize is to give the person who has been Verified the ability to use the web site with their own password.
14th Aug 2019, 10:46 PM
Gwendolyn Phillips de Ashborough
Gwendolyn Phillips de Ashborough - avatar
+ 2
Authentication is like: Are you the one, you say you are? Authorization is like: This is what you're allowed to see and do.
14th Aug 2019, 7:20 PM
Bart van den Donk
Bart van den Donk - avatar
+ 1
Authorisation is the use of password when logging in. Authentication is to prove who you are claiming to be
14th Aug 2019, 6:37 AM
+ 1
After reading these comments I even forget what I already knew ☹️🤯🤒🧠💨:-P
14th Aug 2019, 10:00 AM
karangreat - avatar
+ 1
Authentication is all about your identity. (Login) Authorization is all about authority given to you access level. Like you can add, edit, delete, view. As per your authorization you are allowed to actions mention above.
1st Sep 2019, 10:27 AM
husen - avatar