Generating X.509 Certificates in Linux
The easiest way to create X.509 certificates on Linux is the openssl command and the auxiliary tools. When the OpenSSL package has been installed usually an auxillary command CA and/or CA.pl, has been installed, too. We will use this command to create the certificates.
Read the Article
|
Windows 2000 Kerberos Interoperability
While other papers discuss Kerberos in general or the Windows 2000 implementation, this work explores compatibility issues between traditional Unix implementations and Microsoft s implementation. First discussed will be Microsofts support of the official Kerberos V5 standard RFC 1510. Next discussed will be how to configure a Windows 2000 network to work with a UNIX Kerberos implementation in a variety of common scenarios, and finally this work discusses extensions to the Kerberos standard that Microsoft has documented in a number of Internet Drafts. Overall Microsoft s Kerberos implementation is proving itself to be interoperable in all common scenarios.
Read the Article
|
Managing Identity in the Digital World
Ultimately the solution you implement should best serve your environment. Though the examples used in this paper deal primarily with the username and password methodology for access control, a number of other options exist. SecureID cards, certificates, biometrics and other tokens are all other forms of identification used today. These considerations need to be applied when choosing your solution.
Read the Article
|
Understanding EAP-MD5 Authentication with RADIUS
This document has been compiled as an effort to understand the process of Authentication involved when using RADIUS with EAP-MD5. The document will look into the details of the EAP-MD5 authentication process when used with RADIUS. We shall see how RADIUS protocol can be extended to support third-party authentication process. We shall also discuss the advantages and disadvantages of the protocol and look at the alternatives that are available to address the shortcomings of the protocol.
Read the Article
|
Authentication
An overview of various types of authentication ranging from simple username/password and CHAP to smart cards and biometrics.
Read the Article
|
Federated Identity Management
Federated Identity management makes it possible for an authenticated identity to be recognized and take part in personalized services across multiple domains. It avoids pitfalls of centralized storage of personal information, while allowing users to link identity information between different accounts. Users control linking of account management (to an extent) and personalization of services. Federated identity requires two key components: trust and standards [2]. Trust model of Federated Identity management is based on Circle of Trust.
Read the Article
|
Centralized User Management with Kerberos and LDAP
In this article, I will provide an overview of user account management with Kerberos and LDAP. I will describe the protocols and how they work as well as their implementation. Finally, I will discuss how to manage accounts using this new system.
Read the Article
|
The Mystery Authentication Problem
About two weeks after the installation, problems began to emerge. When navigating to the SharePoint home page, several users reported that an authentication box popped up when they tried to access the site. If they entered their network login credentials, they were denied access. The problem was annoying enough to turn the user's initial enthusiasm about SharePoint to one of frustration, especially since they were starting to rely on it in their business. A solution needed to happen and quickly.
Read the Article
|
A System to Enhance Security in Kerberos Authentication System
This paper aims to outline a general introduction to kerberos systems, gives a brief account of cryptography & steganography, elucidates the proposed algorithm, and illustrates how performance of kerberos systems can be enhanced using the proposed algorithm. This paper discusses only Kerberos version 4, the most popular, but also briefly explains the differences between version 4 and version 5, the latest.
Read the Article
|
Evaluating Strong Authentication Systems
The purpose of this document is to provide the information required for you to evaluate the WiKID Authentication System on its financial, technical and operational merits.
Read the Article
|
