Password-Based Authentication Security Pattern A subject proves identity by providing a correct identifier (username/email) and corresponding password. Relies on the assumption that only the actual owner knows the correct password. Core Components | Role | Type | Responsibility | |------|------|----------------| | Subject | Entity | Provides identifier and password | | Enforcer | Enforcement Point | Ensures authentication before action processing | | Verification Manager | Entity | Collects inputs for password verification | | Comparator | Decision Point | Compares hash values | | Hasher | Cr…