Difference between revisions of "Authenticator"
From MgmtWiki
(Created page with "==Full Title or Meme== Authenticators are devices in the user possession that can generate a one-time password. ==Context== *Authenticators may be independent hardwar...") |
(→Problem) |
||
| Line 6: | Line 6: | ||
==Problem== | ==Problem== | ||
| − | Give users a hand-held device that can generate | + | Give users a hand-held device that can generate secured claims for access to secure accounts. |
==Solution== | ==Solution== | ||
Revision as of 12:07, 29 August 2018
Contents
Full Title or Meme
Authenticators are devices in the user possession that can generate a one-time password.
Context
- Authenticators may be independent hardware devices, or may be software running on a User Device that contains a Trusted Execution Environment to hold user Credentials that are used to create claims for the user.
Problem
Give users a hand-held device that can generate secured claims for access to secure accounts.
Solution
- The original Security Dynamics (later RSA, now Dell) Authenticator was a small hand held device that continually generated a password every (eg 30) seconds that could be sync'd with the server.
- Now Microsoft, Google and others offer Authencators as Smart Phone Native Apps.
The following is a list of some of the Authentictors now in use.
- RSA SecurID is the original device. It came in multiple form factors.
- Symantec VIP Security Card size of a credit card.
- Symantec VIP Security Token size of a key fob.
- Feitian MultiPass FIDO Security Key
- Google Authenticator Native App
