Knowledge-based authentication: Difference between revisions

'''Knowledge-based authentication''', commonly referred to as '''KBA''', is a method of [[authentication]] which seeks to prove the identity of someone accessing a service such as a financial institution or website. As the name suggests, KBA requires the knowledge of [[Personal data|private information]] from the individual to prove that the person providing the identity information is the owner of the identity. There are two types of KBA: ''static KBA'', which is based on a pre-agreed set of shared secrets, and ''dynamic KBA'', which is based on questions generated from a wider base of personal information.<ref>{{Cite journal|last=Skračić|first=K.|last2=Pale|first2= Skračić, P.|last3=Jeren|first3=B.|date=May 2014|title=QuestionPale basedand userB. authentication in commercialJeren, environments|url="[https://ieeexplore.ieee.org/abstract/document/6859790|journal=20146596424/citations#citations Knowledge based authentication requirements]," ''2013 37th36th International Convention on Information and Communication Technology, Electronics and Microelectronics (MIPRO)|pages=1422–1427|doi=10'', Opatija, Croatia, 2013, pp.1109/MIPRO.2014 1116-1120.6859790}}</ref>