At a high level, these elements can be broken down into three categories: the principal it- self (the user, device, or service requesting access), the credential the principal submits (shared key, one-time password, digital certificate, or biometric credential), and the contextual information ...