Strong Authentication Open Id & Axsionics

1,574 views

Published on

A Cookbook about using Axsionics and OpenID for Strong Authentication

Published in: Technology, Business
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
1,574
On SlideShare
0
From Embeds
0
Number of Embeds
6
Actions
Shares
0
Downloads
29
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Strong Authentication Open Id & Axsionics

  1. 1. Cookbook Strong Authentication & OpenID Using Axsionics & Clavid 01-3-2009 Sylvain Maret / Security Architect /Geneva http://sylvain-maret.blogspot.com/
  2. 2. Introduction <ul><li>This cookbook shows you how to use an Axsionics – Internet Passport - for Strong authentication with OpenID </li></ul><ul><li>We will use Clavid as a OpenID provider (IDP) </li></ul><ul><ul><li>A Swiss Compagny </li></ul></ul><ul><ul><li>http://www.clavid.com/ </li></ul></ul>
  3. 3. About Axsionics <ul><li>Zero Foot Print Biometry Device providing strong authentication and transaction security </li></ul><ul><li>3 factors authentication </li></ul><ul><li>For more information: http://www.yubico.com </li></ul><ul><li>For more information: http://www.yubico.com </li></ul>
  4. 4. About Clavid <ul><li>A Swiss company providing identity </li></ul><ul><ul><li>OpenID & SAML support </li></ul></ul><ul><ul><li>Swiss Post Digital Certificate </li></ul></ul><ul><ul><li>All SSL Client Digital Certificate X509 </li></ul></ul><ul><ul><li>Yubikey: and easy USB Token </li></ul></ul><ul><ul><ul><li>No driver and very cheap </li></ul></ul></ul><ul><ul><li>Axsionics </li></ul></ul><ul><ul><li>SMS Out of Band Authentication </li></ul></ul><ul><ul><li>And Username & Password (no Strong Authentication……) </li></ul></ul><ul><ul><li>And Soon more ! </li></ul></ul><ul><ul><ul><li>OTP Token ? </li></ul></ul></ul><ul><ul><ul><li>OCSP ? </li></ul></ul></ul><ul><ul><ul><li>Thawte Personal user Certificates ? Web of trust </li></ul></ul></ul><ul><ul><ul><li>I Hope  </li></ul></ul></ul>
  5. 5. Let’s define the scenario <ul><li>Use a Strong Authentication </li></ul><ul><ul><li>My finger and a device Axsionics </li></ul></ul><ul><li>Use OpenID </li></ul><ul><ul><li>Clavid.ch </li></ul></ul><ul><ul><li>http://www.clavid.ch/ </li></ul></ul><ul><li>Use Plaxo to test this example with OpenID </li></ul>
  6. 6. Connect to Plaxo and choose OpenID
  7. 7. Enter your OpenID User ID from your Clavid.ch Identity Provider
  8. 8. You are redirected to Clavid.ch: Your secure Identity Provider
  9. 9. Now your IDP asks you to proof your identity displaying a challenge The “Flicker code”
  10. 10. Use now your fingerprint to claim how you are and read the challenge !
  11. 11. Proof your digital identity using a biometric reader. So easy !
  12. 12. You have now a unique Code.(One Time Password)
  13. 13. Enter now your unique code and submit it to your IDP
  14. 14. Ok, now you are redirected to Plaxo: That it
  15. 15. Some Key Points ! <ul><li>No need to install software – Zero Foot Print </li></ul><ul><li>Very high level of security </li></ul><ul><li>Strong non repudiation using Biometry </li></ul><ul><li>Resist to Men in the Browser Attack </li></ul>
  16. 16. &quot;Le conseil et l'expertise pour le choix et la mise en oeuvre des technologies innovantes dans la sécurité des systèmes d'information et de l'identité numérique&quot;
  17. 17. More info about Digital Identity Security: Sorry most of the time in french  http://sylvain-maret.blogspot.com/

×