From a security point of view, authentication is about identification of the user. It is the first line of defense in any security solution. It can be as simple as the challenge-response mechanism we know as userid and password. It can be also as complex as using digital certificates as the identification mechanism and numerous other schemes for user identification.

The authentication aspect of security for the product is delegated to the infrastructure used to run the product. This is due to several reasons: