TY - GEN
T1 - A framework for federated two-factor authentication enabling cost-effective secure access to distributed cyberinfrastructure
AU - Ezell, Matthew A.
AU - Rogers, Gary L.
AU - Peterson, Gregory D.
PY - 2012
Y1 - 2012
N2 - As cyber attacks become increasingly sophisticated, the security measures used to mitigate the risks must also increase in sophistication. One time password (OTP) systems provide strong authentication because security credentials are not reusable, thus thwarting credential replay attacks. The credential changes regularly, making brute-force attacks significantly more difficult. In high performance computing, end users may require access to resources housed at several different service provider locations. The ability to share a strong token between multiple computing resources reduces cost and complexity. The National Science Foundation (NSF) Extreme Science and Engineering Discovery Environment (XSEDE) provides access to digital resources, including supercomputers, data resources, and software tools. XSEDE will offer centralized strong authentication for services amongst service providers that leverage their own user databases and security profiles. This work implements a scalable framework built on standards to provide federated secure access to distributed cyberinfrastructure.
AB - As cyber attacks become increasingly sophisticated, the security measures used to mitigate the risks must also increase in sophistication. One time password (OTP) systems provide strong authentication because security credentials are not reusable, thus thwarting credential replay attacks. The credential changes regularly, making brute-force attacks significantly more difficult. In high performance computing, end users may require access to resources housed at several different service provider locations. The ability to share a strong token between multiple computing resources reduces cost and complexity. The National Science Foundation (NSF) Extreme Science and Engineering Discovery Environment (XSEDE) provides access to digital resources, including supercomputers, data resources, and software tools. XSEDE will offer centralized strong authentication for services amongst service providers that leverage their own user databases and security profiles. This work implements a scalable framework built on standards to provide federated secure access to distributed cyberinfrastructure.
KW - OTP
KW - XSEDE
KW - authentication
KW - radius
UR - http://www.scopus.com/inward/record.url?scp=84865329968&partnerID=8YFLogxK
U2 - 10.1145/2335755.2335796
DO - 10.1145/2335755.2335796
M3 - Conference contribution
AN - SCOPUS:84865329968
SN - 9781450316026
T3 - ACM International Conference Proceeding Series
BT - Proceedings of the XSEDE12 Conference
T2 - 1st Conference of the Extreme Science and Engineering Discovery Environment: Bridging from the eXtreme to the Campus and Beyond, XSEDE12
Y2 - 16 July 2012 through 19 July 2012
ER -