Spring 2011 Internet2 Member Meeting

Use Internet2 SiteID

Already have an Internet2 SiteID?
Sign in here.

Internet2 SiteID

Cutting Edge 2-Factor AuthN Using Smart Phones

Time 04/20/11 01:15PM-02:30PM

Session Abstract

The predominant means for authentication in (educational) Identity Federations is still username/password. The most important reason for this is that it is easy to roll out and well-known among users. Both from a security as well as from a usability perspective, however, username/password has well-known drawbacks.

In 2009 SURFnet trialed the Mobile PKI technology in its Identity Federation (SURFfederatie). Using a mobile phone as a token has shown major benefits. Unfortunately, this technology relies on the SIM and thus on the co-operation of mobile operators. This has hampered large-scale deployment.

Because we wanted to leverage the potential of mobile phones as trusted devices without having to rely on mobile operators, we decided to design a novel authentication technique that uses features of modern handsets (the ability to install


Speaker Harold Teunissen SURFnet

Speaker Joost van Dijk SURFnet

Speaker Roland van Rijswijk SURFnet

Presentation Media

Secondary tracks Middleware

gold Sponsors

supporter Sponsors