KIT | KIT-Bibliothek | Impressum | Datenschutz

Guidelines on stepping up the authentication component in AAIs implementing the AARC BPA

Hardt, M. [Ed]; Stevanovic, U.

Abstract:
A number of research community use cases require users to verify their identity by using more than one type of credentials, for instance using password authentication, together with some physical object such as a phone or usb stick that generates tokens/pins, etc. At the same time, there are services that may require an already logged in user to re-authenticate using a stronger authentication mechanism when accessing sensitive resources. Authentication step-up is then needed to improve the original authentication strength of those users. This document provides guidelines on step-up of the authentication component. It covers requirements and implementation recommendations, describes a proposed authentication step-up model, and outlines related work and documentation.

Open Access Logo


Volltext §
DOI: 10.5445/IR/1000093112
Veröffentlicht am 02.04.2019
Originalveröffentlichung
DOI: 10.5281/zenodo.1251671
Coverbild
Zugehörige Institution(en) am KIT Steinbuch Centre for Computing (SCC)
Publikationstyp Forschungsbericht
Jahr 2018
Sprache Englisch
Identifikator urn:nbn:de:swb:90-931127
KITopen-ID: 1000093112
HGF-Programm 46.12.02 (POF III, LK 01)
Verlag GÉANT, Amsterdam
Bemerkung zur Veröffentlichung The AARC Constortium, APPINT Members, at KIT: M. Hardt [Ed], U. Stevanovic.

Peer Review: Ja: Diese Veröffentlichung wurde im Rahmen des AARC Projekts in einem mehrwöchigen Prozess intensiv begutachtet.
Vorab online veröffentlicht am 30.03.2018
Schlagworte AARC, AAI, Federation, Infrastructures, Assurance
KIT – Die Forschungsuniversität in der Helmholtz-Gemeinschaft
KITopen Landing Page