Authentication

Authorization

Identification

Accounting

Password

OTP

Biometric fingerprint

Security token

Allowing access to all users

Granting users the minimum access required to perform their tasks

Denying all access unless explicitly approved

Allowing unrestricted access to administrative users

Discretionary Access Control (DAC)

Mandatory Access Control (MAC)

Role-Based Access Control (RBAC)

Rule-Based Access Control (RAC)

Organizational roles

User preferences

Device type

Time of day

IDS monitors; IPS prevents attacks

IDS prevents attacks; IPS monitors

IDS uses heuristic-based detection; IPS uses signature-based detection

IDS operates inline; IPS operates offline

Reduces phishing risk

Requires password memory exercises

Faster login times

Reduces credential reuse risks