What access control question confirms the identity of a person trying to log on?

The concept of authentication is crucial in access control, as it specifically refers to the process of confirming the identity of a user or entity trying to access a system. This process typically involves verifying credentials, such as usernames and passwords, biometric data, or security tokens.

Authentication ensures that only authorized individuals can access resources or systems, thus protecting sensitive information from unauthorized access. For instance, when a user enters their username and password, the system checks those credentials against a stored database to confirm that they are valid and that the user has permission to log in.

The other terms presented do not serve the same purpose as authentication. Authorization refers to the permissions granted to a user after their identity has been confirmed, determining what resources they can access. Kerberos is a specific authentication protocol that uses tickets to grant access to network resources, but is a subset of the broader authentication process. Mandatory Access Control is a type of access control policy that restricts access based on a user’s clearance level and the classification of the information, not specifically focused on identity verification.

Ultimately, the function of authentication is to verify identity as a preliminary step before any access control measures, making it the correct answer to the question.