Intercepted tokens may be misused until they are revoked or expire.

Tokens are always weaker than passwords.

Tokens cannot expire.

Tokens cannot be revoked.

To make passwords easier to read.

To remove the need for authentication

To store passwords in a secure file.

To protect stored passwords from direct exposure.

To detect malware.

To attach permissions to an object or entity.

To store encryption keys.

To generate passwords.

To replace access control lists.

To reduce risk by splitting authority and tasks.

To allow one person to do everything.

To eliminate roles.

PIN

Security token

Password

 Voice pattern

Access is based on security labels and clearance.

Users decide their own access rights.

 It ignores system policy.

It is managed only by file owners.

Authentication

Encryption

Identification

Authorization

A method for hiding data from users.

A way to verify the authenticity of a digital message or document.

A file permission setting.

A type of password cracking tool.