First page Back Continue Last page Overview Graphics
Why do we need authentication?
Much of the time we don't and shouldn't
- The web succeeded because it was free
But sometimes we do
- to control access
- so we know who we are talking to
- to provide customisation, user privacy, etc.
AAA - Access control, Authentication, Authorization
Notes:
One of my nightmares is that Raven will result in more web content having access controls applied to it for the wrong reasons
Raven-protected content will probably not be indexable, not catchable, etc...
You might legitimately limit access for DPA reasons (though how will FOI impact on this?)
We might need to know who we are talking to for a webmail interface
Apache distinguishes between Access control, Authentication, and Authorisation. Some people maintain one of the 'A's is for 'Accounting'