Re: Secure communication of passwords

[Mike Osterman <ostermmg () WHITMAN EDU>]

This also reminds me of Purdue's FileLocker2 project:
http://filelocker2.sourceforge.net

Disclaimer: I've not tried it, but it looks solid and edu-friendly (CAS and LDAP auth).

-Mike

> On Jan 28, 2015, at 1:56 PM, Shalla, Kevin <kshalla () UIC EDU> wrote:
>
> We wrote the application Protected Email Attachment Repository for this.. We have a video showing features: 
> https://www.youtube.com/watch?v=7qqXZIgzj2I <https://www.youtube.com/watch?v=7qqXZIgzj2I>
>  
> Kevin Shalla
> Academic and Enrollment Services
> University of Illinois at Chicago
>  
> From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Thomas 
> Carter
> Sent: Wednesday, January 28, 2015 3:27 PM
> To: SECURITY () LISTSERV EDUCAUSE EDU
> Subject: [SECURITY] Secure communication of passwords
>  
> On occasion we need to communicate a password (with a possible username) with a user. This is generally for some 
> external system that doesn’t integrate into existing authentication mechanisms. Per our policy, we can’t send the 
> password via email and it shouldn’t be written down. We generally try to communicate it via a phone call if possible, 
> with a text message to a verified number as a backup. Unfortunately neither of these are convenient, so I wondered 
> what others are using for this task.
>  
> Thomas Carter
> Network and Operations Manager
> Austin College 
> 903-813-2564
> <image001.gif>