GI LogoGI Logo
  • Login
Digital Library
    • All of DSpace

      • Communities & Collections
      • Titles
      • Authors
      • By Issue Date
      • Subjects
    • This Collection

      • Titles
      • Authors
      • By Issue Date
      • Subjects
Digital Library Gesellschaft für Informatik e.V.
GI-DL
    • English
    • Deutsch
  • English 
    • English
    • Deutsch
View Item 
  •   DSpace Home
  • Lecture Notes in Informatics
  • Proceedings
  • DFN-Forum Kommunikationstechnologien
  • P271 - 10. DFN-Forum Kommunikationstechnologien
  • View Item
JavaScript is disabled for your browser. Some features of this site may not work without it.
  •   DSpace Home
  • Lecture Notes in Informatics
  • Proceedings
  • DFN-Forum Kommunikationstechnologien
  • P271 - 10. DFN-Forum Kommunikationstechnologien
  • View Item

X.509 User Certificate-based Two-Factor Authentication for Web Applications

Author:
Waldvogel, Marcel [DBLP] ;
Zink, Thomas [DBLP]
Abstract
An appealing property to researchers, educators, and students is the openness of the phys­ical environment and IT infrastructure of their organizations. However, to the IT administration, this creates challenges way beyond those of a single-purpose business or administration. Especially the personally identifiable information or the power of the critical functions behind these logins, such as financial transactions or manipulating user accounts, require extra protection in the heterogeneous educational environment with single-sign-on. However, most web-based environments still Jack a reasonable second-factor protection or at least the enforcement of it for privileged operations with­out hindering normal usage. In this paper we introduce a novel and surprisingly simple yet extremely flexible way to irnplement two-factor authentication based on X.509 user certificates in web applications. Our solution requires only a few !irres of code in web server configuration and none in the application source code for basic protection. Furthermore, since it is based on X.509 certificates, it can be easily combined with smartcards or USB cryptotokens to further enhance security.
  • Citation
  • BibTeX
Waldvogel, M. & Zink, T., (2017). X.509 User Certificate-based Two-Factor Authentication for Web Applications. In: Müller, P., Neumair, B., Raiser, H. & Dreo Rodosek, G. (Hrsg.), 10. DFN-Forum Kommunikationstechnologien. Bonn: Gesellschaft für Informatik e.V.. (S. 51-61).
@inproceedings{mci/Waldvogel2017,
author = {Waldvogel, Marcel AND Zink, Thomas},
title = {X.509 User Certificate-based Two-Factor Authentication for Web Applications},
booktitle = {10. DFN-Forum Kommunikationstechnologien},
year = {2017},
editor = {Müller, Paul AND Neumair, Bernhard AND Raiser, Helmut AND Dreo Rodosek, Gabi} ,
pages = { 51-61 },
publisher = {Gesellschaft für Informatik e.V.},
address = {Bonn}
}
DateienGroesseFormatAnzeige
paper05.pdf281.7Kb PDF View/Open

Haben Sie fehlerhafte Angaben entdeckt? Sagen Sie uns Bescheid: Send Feedback

More Info

ISBN: 978-3-88579-665-7
ISSN: 1617-5468
xmlui.MetaDataDisplay.field.date: 2017
Language: en (en)
Content Type: Text/Conference Paper

Keywords

  • multi-factor-authentication
  • authentication
  • crypto token
  • S/MIME
  • certificate
  • X.509
Collections
  • P271 - 10. DFN-Forum Kommunikationstechnologien [14]

Show full item record


About uns | FAQ | Help | Imprint | Datenschutz

Gesellschaft für Informatik e.V. (GI), Kontakt: Geschäftsstelle der GI
Diese Digital Library basiert auf DSpace.

 

 


About uns | FAQ | Help | Imprint | Datenschutz

Gesellschaft für Informatik e.V. (GI), Kontakt: Geschäftsstelle der GI
Diese Digital Library basiert auf DSpace.