Cutting Edge 2-Factor AuthN Using Smart Phones
Time 04/20/11 01:15PM-02:30PM
The predominant means for authentication in (educational) Identity Federations is still username/password. The most important reason for this is that it is easy to roll out and well-known among users. Both from a security as well as from a usability perspective, however, username/password has well-known drawbacks.
In 2009 SURFnet trialed the Mobile PKI technology in its Identity Federation (SURFfederatie). Using a mobile phone as a token has shown major benefits. Unfortunately, this technology relies on the SIM and thus on the co-operation of mobile operators. This has hampered large-scale deployment.
Because we wanted to leverage the potential of mobile phones as trusted devices without having to rely on mobile operators, we decided to design a novel authentication technique that uses features of modern handsets (the ability to install
Speaker Harold Teunissen SURFnet
Speaker Joost van Dijk SURFnet
Speaker Roland van Rijswijk SURFnet
Secondary tracks Middleware