Universal authentication is a network identity-verification method that allows users to move from site to site securely without having to enter identifying information multiple times. Authentication (in contrast to authorization ) is the process of determining whether or not an entity attempting to access a network or site is actually who or what it claims to be. With universal authentication , a subscriber enters one set of parameters (such as a username and password) at the start of every network session. The authentication data for any site visited thereafter is automatically generated for the duration of that session.
One of the biggest problems with Internet security is the fact that every Web site has its own authentication system. A typical Internet user, who has two or three Web-based e-mail addresses and frequents half a dozen online vendors to buy or sell things, must memorize several usernames and passwords. This can be difficult unless the authentication data is written down or stored as a text file, which then becomes a security issue. Universal authentication can eliminate this problem without compromising security or privacy.