Authentication is basically an identification process. Do I know who you are?
Ex: A User login ID/Password are the authentication identity
Authorization is the process by which a program determines whether a given identity is permitted to access
a resource such as a file or an application component. Now that you are authenticated, I know who you
are.
Ex: After Identification (UserId/Password) what permission do you have to access available resource or what can you access with you identity ??
Authorization process always comes after authontication.
No comments:
Post a Comment