Two factor authentication: Open, trustworthy and enterprise ready

von Cornelius Klbel ()

You are being watched. The government has a secret system: a machine that spies on you every hour of every day. They designed the machine to detect acts of terror, but it sees everything. Violent crimes involving ordinary people; people like you. Crimes the government considered 'irrelevant'. Everybody becomes a person of interest. Protecting your data gets more important. Determining your identity to prevent unauthorized access to your data gets more important.

Everybody knows that a password - be it simple or even complex - is a potential vulnerability. Two factor authentication is the way to authenticate a user not only by verifying his password but additionally asking for the possession of a second factor - a hardware device. But nobody knows who can be trusted.

This talk invites you to trust in two factor authentication and to trust in open source. This talk will give a short overview about possible ways to do two factor authentication with open source and finally describe the open source two factor system LinOTP, that can manage different kind of tokens like Yubikey, eTokenNG OTP and smartphone apps. Thus strengthen the security of VPNs, remote logins and hard disk encryption.

Über den Autor Cornelius Klbel:

Cornelius ist seit vielen Jahren in der Entwicklung von Produkten aus dem Bereich der starken Authentisierung ttig. Er kmmert sich um die Integration des Authentisierungsbackend LinOTP in andere Produkte. Vor der Produktentwicklung hat er als Senior Security Consultant im Authentisierungsumfeld gearbeitet.