[COLUG] Enterprise Two Factor Authentication
Duane
duane at cacert.org
Tue Mar 13 00:01:45 EST 2007
A while back I wrote about Mobile One Time Password (mOTP) this work was
originally started more or less as a pet topic, for years I've been
looking for a solution to the problem of secure portable authentication,
and while I have in the past tried to use hardware cryptography
solutions these aren't very portable in reality due to driver and other
issues.
Mobile phones on the other hand are very ubiquitous, and this includes
phones capable of running third party java midlets not to mention most
techs and others are required to carry phones in any case so it seems
like the perfect platform.
After my original post a number of people showed interest in seeing
things go forward and a group of us have been working on to not only
improve this java midlet, but on developing a centralised solution for
management and authentication.
Some people are planning to utilise this work to authenticate linux
services (via PAM), as well as web sites/services and since everything
utilises radius as the backend protocol there is a LOT of code already
written to authenticate in this manner.
For further details, screen shots and those just curious you can see it
all at http://www.freeauth.org
--
Best regards,
Duane
http://www.cacert.org - Free Security Certificates
http://www.nodedb.com - Think globally, network locally
http://www.sydneywireless.com - Telecommunications Freedom
http://e164.org - Because e164.arpa is a tax on VoIP
http://www.freeauth.org - Enterprise Two Factor Authentication
"In the long run the pessimist may be proved right,
but the optimist has a better time on the trip."
More information about the colug432
mailing list