Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: SecureID vs Certificates

From: Peter Lukas <plukas () oss uswest net>
Date: Fri, 16 Feb 2001 07:49:11 -0600 (CST)
One of the systems I evaluated was capable of accomplishing this
task.  Users could "sign" documents (really a form on the web) using the
token.

When the user completed the form and was ready to submit, the auth server
would issue a challenge.  THe user would generate a response with the
token, effectively "signing" the document.

THe largest drawback to this method was that the system serving the form
also had to be the system performing the authentication.  I'm not sure if
the vendor has developed that any further.

If anyone is interested in the name of the vendor, give a shout.

Peter Lukas

On Thu, 15 Feb 2001, Darren Reed wrote:



This talk has got me thinking...has anyone found a way to combine
OTP's with digital certificates?  (Without using a "normal" password
or passphrase, that is).

Darren
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards



_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: