haku: @keyword mobile phone / yhteensä: 39
viite: 7 / 39
Tekijä: | Andrade, André |
Työn nimi: | Strong mobile authentication in single sign-on systems |
Julkaisutyyppi: | Diplomityö |
Julkaisuvuosi: | 2011 |
Sivut: | ix + 92 Kieli: eng |
Koulu/Laitos/Osasto: | Tietotekniikan laitos |
Oppiaine: | Tietokoneverkot (T-110) |
Valvoja: | Aura, Tuomas ; Ferreira, Paulo |
Ohjaaja: | Suoranta, Sanna |
OEVS: | Sähköinen arkistokappale on luettavissa Aalto Thesis Databasen kautta.
Ohje Digitaalisten opinnäytteiden lukeminen Aalto-yliopiston Harald Herlin -oppimiskeskuksen suljetussa verkossaOppimiskeskuksen suljetussa verkossa voi lukea sellaisia digitaalisia ja digitoituja opinnäytteitä, joille ei ole saatu julkaisulupaa avoimessa verkossa. Oppimiskeskuksen yhteystiedot ja aukioloajat: https://learningcentre.aalto.fi/fi/harald-herlin-oppimiskeskus/ Opinnäytteitä voi lukea Oppimiskeskuksen asiakaskoneilla, joita löytyy kaikista kerroksista.
Kirjautuminen asiakaskoneille
Opinnäytteen avaaminen
Opinnäytteen lukeminen
Opinnäytteen tulostus
|
Sijainti: | P1 Ark Aalto 6732 | Arkisto |
Avainsanat: | strong authentication security token mobile phone credential SSO federation identity management PKI SIM ObC |
Tiivistelmä (eng): | With high risk services, such as online banking, coming to the Internet, traditional authentication schemes like username and password are no longer sufficient to cope with the latest security threats. Therefore, strong authentication methods that use two or more identification factors are becoming more relevant to web authentication. These methods often require an additional device to act as a security token. The mobile phone qualifies as a cheap, available and usable option. Moreover, single sign-on (SSO) authentication systems offer more usability and flexibility to authentication, and enhance identity management. Hence, SSO and strong authentication complement each other. SSO provides the advantages mentioned above and strong authentication offers a safer method for service providers to authenticate users. This thesis focuses on studying the state-of-the-art methods of strong web authentication, SSO technologies and the use of the mobile phone as a security token. The main contribution is a strong authentication protocol for SSO systems using the mobile phone as security token. It aims to be a secure, usable, flexible and cost-efficient user authentication platform that does not assume a direct connection between the device that accesses the services and the security token. The solution is based on PKI and mobile certificates, session management, and a hardware-based secure credential manager in the mobile phone. Furthermore, this thesis describes a proof-of-concept implementation of the protocol using the Shibboleth federated SSO system and On-board Credentials from Nokia. The prototype achieves usable strong authentication using the mobile phone, and integrates easily with the SSO platform. |
ED: | 2011-08-16 |
INSSI tietueen numero: 42646
+ lisää koriin
INSSI