Guidelines on stepping up the authentication component in AAIs implementing the AARC BPA
Hardt, M. [Hrsg.]
; Stevanovic, U.
; Stevanovic, U.Abstract:
A number of research community use cases require users to verify their identity by using more than one type of credentials, for instance using password authentication, together with some physical object such as a phone or usb stick that generates tokens/pins, etc. At the same time, there are services that may require an already logged in user to re-authenticate using a stronger authentication mechanism when accessing sensitive resources. Authentication step-up is then needed to improve the original authentication strength of those users. This document provides guidelines on step-up of the authentication component. It covers requirements and implementation recommendations, describes a proposed authentication step-up model, and outlines related work and documentation.
| Zugehörige Institution(en) am KIT | Scientific Computing Center (SCC) Universität Karlsruhe (TH) – Zentrale Einrichtungen (Zentrale Einrichtungen) |
| Publikationstyp | Forschungsbericht/Preprint |
| Publikationsjahr | 2018 |
| Sprache | Englisch |
| Identifikator | urn:nbn:de:swb:90-931127 KITopen-ID: 1000093112 |
| HGF-Programm | 46.12.02 (POF III, LK 01) Data Activities |
| Verlag | GÉANT |
| Bemerkung zur Veröffentlichung | The AARC Constortium, APPINT Members, at KIT: M. Hardt [Ed], U. Stevanovic. Peer Review: Ja: Diese Veröffentlichung wurde im Rahmen des AARC Projekts in einem mehrwöchigen Prozess intensiv begutachtet. |
| Vorab online veröffentlicht am | 30.03.2018 |
| Schlagwörter | AARC, AAI, Federation, Infrastructures, Assurance |