Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Security Basics: R: Worldwide authentication

R: Worldwide authentication

From: Alessandro Bottonelli <abottonelli_at_libero.it>
Date: Fri, 18 Oct 2002 19:46:59 +0200

> -----Messaggio originale-----
> Da: Marty [mailto:marti_at_videotron.ca]
> Inviato: giovedì 17 ottobre 2002 14.39
> A: security-basics_at_securityfocus.com
> Oggetto: Worldwide authentication
>
>
> They don't necessarly own portable PCs.
>
So we assume PC cafe public terminals, friends or collegues PCs, etc.

> We need to authenticate the users to let them access data from the
> mainframe.
>
A WEB front end will solve the problem that they do not necessarily
have their own PC (and their own client application).

> Note that the data is very sensitive.
>
OK, SSL for data encryption and "strong authentication" shall be
called into service ...

> What is the (esiest/not too expensive) solution?
>
For traffic encryption SSL. For authentication I would go with
ID Cards (those with an LCD Display that changes every minute).
They do not require an interface with the system (which could
be any kind of system you said before...) and are reasonably
priced.

Do not forget that your application should be able to disconnect
idle users and leave nothing in the clear on the client PC (since
it is not necessarily owned by your user). 

--
Alessandro Bottonelli
A.Bottonelli_at_axis-net.it (professional)
ABottonelli_at_libero.it (personal)
Received on Oct 21 2002
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos