Question

What is the difference between authentication and authorization

Answer 1

Answer:

Basis of Differentiation  Authentication  Authorization

Refers to  It is the process of confirming the authenticity of attributes related to a single piece of data, as claimed by an actual entity.  It refers to the task/process related to specifying access privileges and rights to the resources connected with data security.

Checks for  Checks the details of an entity with a view of identifying the entity.  Checks the privileges of a user before providing access.

What does it verify?  Has methods of verifying the credentials of a user.  Has methods of verifying the permissions of a user.

Time of occurrence  This occurs once the authorization has been done.  This occurs after the authorization takes place.

Instance  The authentication of a student takes place before he logs into the page depicting the mark sheet on his University’s portal.  It is possible for the student to access lectures and knowledge slides online based on the permissions provided to him or her.

Confirms to  Confirms a user’s identity for granting access to any given system  Authorization confirms whether a user is authorized to use given resources or not.

Username/password  In general, authentication needs a username and password.  The factors essential for authorization are likely to differ by the security level.

Sequence  Authentication serves to be the first step when it comes to handling authorization. Therefore, it is always done first.  Authorization takes place after successful authentication.