Authentication Authentication is the process of logging in, signing on or otherwise presenting information or oneself in a manner that proves his or her identity. The most common example of authentication is the use of a username and password to gain access to a system, network or web site. The username and password combination is often referred to as a person's credentials and it is frequently sent over networks. Encryption is used to protect these credentials. If no encryption is used to protect the information as it is sent over the network, an attacker could capture those credentials and assume the identity of the originator.
Validation, Fingerprint and Digital Signature Validation Validation describes the ability to provide assurance that a sender's identity is true and that a message, document or file has not been modified. Encryption can be used to provide validation by making a digital fingerprint of the information contained within a message.
A digital fingerprint is a code that uniquely identifies a file or a message by reflecting the content of the file with tremendous specificity.
The encryption program produces the digital fingerprint by performing a byte-by-byte mathematical analysis of the message. Any attempt to modify the message will change the fingerprint. Comparison between a fingerprint known to be good and one sent to the recipient can indicate whether or not the message has been modified. While a fingerprint can indicate that the message has not been tampered with, it does not assure the recipient of the identity of the sender. For that assurance, the sender can utilize a digital signature.
A digital signature is a piece of information that proves the identity of the sender. It is a digital stamp or personal seal that is made using a private key. A sender can electronically or digitally sign a message and its fingerprint before delivery to a recipient.
Upon receiving the message, the recipient verifies this signature, using the public key that the sender has previously communicated, indicating that the sender is the expected person. The recipient can verify the fingerprint of the message. Upon validation, the recipient can be reasonably sure that the message came from a trusted person and that the contents of the message have not been modified.
Data Protection Probably the most widely-used application of encryption is in the area of data protection. The information that a business owns is invaluable to its productive operation; consequently, the protection of this information is paramount. For people working in small offices and home offices, the most practical uses of encryption for data protection are file and email encryption.
