A framework for federated two-factor authentication enabling cost-effective secure access to distributed cyberinfrastructure

Matthew A. Ezell; Gary L. Rogers; Gregory D. Peterson

doi:10.1145/2335755.2335796

A framework for federated two-factor authentication enabling cost-effective secure access to distributed cyberinfrastructure

Matthew A. Ezell, Gary L. Rogers, Gregory D. Peterson

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

As cyber attacks become increasingly sophisticated, the security measures used to mitigate the risks must also increase in sophistication. One time password (OTP) systems provide strong authentication because security credentials are not reusable, thus thwarting credential replay attacks. The credential changes regularly, making brute-force attacks significantly more difficult. In high performance computing, end users may require access to resources housed at several different service provider locations. The ability to share a strong token between multiple computing resources reduces cost and complexity. The National Science Foundation (NSF) Extreme Science and Engineering Discovery Environment (XSEDE) provides access to digital resources, including supercomputers, data resources, and software tools. XSEDE will offer centralized strong authentication for services amongst service providers that leverage their own user databases and security profiles. This work implements a scalable framework built on standards to provide federated secure access to distributed cyberinfrastructure.

Original language	English
Title of host publication	Proceedings of the XSEDE12 Conference
Subtitle of host publication	Bridging from the eXtreme to the Campus and Beyond
DOIs	https://doi.org/10.1145/2335755.2335796
State	Published - 2012
Event	1st Conference of the Extreme Science and Engineering Discovery Environment: Bridging from the eXtreme to the Campus and Beyond, XSEDE12 - Chicago, IL, United States Duration: Jul 16 2012 → Jul 19 2012

Publication series

Name	ACM International Conference Proceeding Series

Conference

Conference	1st Conference of the Extreme Science and Engineering Discovery Environment: Bridging from the eXtreme to the Campus and Beyond, XSEDE12
Country/Territory	United States
City	Chicago, IL
Period	07/16/12 → 07/19/12

Keywords

OTP
XSEDE
authentication
radius

Access to Document

10.1145/2335755.2335796

Cite this

@inproceedings{139886db0fe742bdbbab0d9d10769d8e,

title = "A framework for federated two-factor authentication enabling cost-effective secure access to distributed cyberinfrastructure",

abstract = "As cyber attacks become increasingly sophisticated, the security measures used to mitigate the risks must also increase in sophistication. One time password (OTP) systems provide strong authentication because security credentials are not reusable, thus thwarting credential replay attacks. The credential changes regularly, making brute-force attacks significantly more difficult. In high performance computing, end users may require access to resources housed at several different service provider locations. The ability to share a strong token between multiple computing resources reduces cost and complexity. The National Science Foundation (NSF) Extreme Science and Engineering Discovery Environment (XSEDE) provides access to digital resources, including supercomputers, data resources, and software tools. XSEDE will offer centralized strong authentication for services amongst service providers that leverage their own user databases and security profiles. This work implements a scalable framework built on standards to provide federated secure access to distributed cyberinfrastructure.",

keywords = "OTP, XSEDE, authentication, radius",

author = "Ezell, \{Matthew A.\} and Rogers, \{Gary L.\} and Peterson, \{Gregory D.\}",

year = "2012",

doi = "10.1145/2335755.2335796",

language = "English",

isbn = "9781450316026",

series = "ACM International Conference Proceeding Series",

booktitle = "Proceedings of the XSEDE12 Conference",

note = "1st Conference of the Extreme Science and Engineering Discovery Environment: Bridging from the eXtreme to the Campus and Beyond, XSEDE12 ; Conference date: 16-07-2012 Through 19-07-2012",

}

Ezell, MA, Rogers, GL & Peterson, GD 2012, A framework for federated two-factor authentication enabling cost-effective secure access to distributed cyberinfrastructure. in Proceedings of the XSEDE12 Conference: Bridging from the eXtreme to the Campus and Beyond. ACM International Conference Proceeding Series, 1st Conference of the Extreme Science and Engineering Discovery Environment: Bridging from the eXtreme to the Campus and Beyond, XSEDE12, Chicago, IL, United States, 07/16/12. https://doi.org/10.1145/2335755.2335796

A framework for federated two-factor authentication enabling cost-effective secure access to distributed cyberinfrastructure. / Ezell, Matthew A.; Rogers, Gary L.; Peterson, Gregory D.
Proceedings of the XSEDE12 Conference: Bridging from the eXtreme to the Campus and Beyond. 2012. (ACM International Conference Proceeding Series).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - A framework for federated two-factor authentication enabling cost-effective secure access to distributed cyberinfrastructure

AU - Ezell, Matthew A.

AU - Rogers, Gary L.

AU - Peterson, Gregory D.

PY - 2012

Y1 - 2012

N2 - As cyber attacks become increasingly sophisticated, the security measures used to mitigate the risks must also increase in sophistication. One time password (OTP) systems provide strong authentication because security credentials are not reusable, thus thwarting credential replay attacks. The credential changes regularly, making brute-force attacks significantly more difficult. In high performance computing, end users may require access to resources housed at several different service provider locations. The ability to share a strong token between multiple computing resources reduces cost and complexity. The National Science Foundation (NSF) Extreme Science and Engineering Discovery Environment (XSEDE) provides access to digital resources, including supercomputers, data resources, and software tools. XSEDE will offer centralized strong authentication for services amongst service providers that leverage their own user databases and security profiles. This work implements a scalable framework built on standards to provide federated secure access to distributed cyberinfrastructure.

AB - As cyber attacks become increasingly sophisticated, the security measures used to mitigate the risks must also increase in sophistication. One time password (OTP) systems provide strong authentication because security credentials are not reusable, thus thwarting credential replay attacks. The credential changes regularly, making brute-force attacks significantly more difficult. In high performance computing, end users may require access to resources housed at several different service provider locations. The ability to share a strong token between multiple computing resources reduces cost and complexity. The National Science Foundation (NSF) Extreme Science and Engineering Discovery Environment (XSEDE) provides access to digital resources, including supercomputers, data resources, and software tools. XSEDE will offer centralized strong authentication for services amongst service providers that leverage their own user databases and security profiles. This work implements a scalable framework built on standards to provide federated secure access to distributed cyberinfrastructure.

KW - OTP

KW - XSEDE

KW - authentication

KW - radius

UR - https://www.scopus.com/pages/publications/84865329968

U2 - 10.1145/2335755.2335796

DO - 10.1145/2335755.2335796

M3 - Conference contribution

AN - SCOPUS:84865329968

SN - 9781450316026

T3 - ACM International Conference Proceeding Series

BT - Proceedings of the XSEDE12 Conference

T2 - 1st Conference of the Extreme Science and Engineering Discovery Environment: Bridging from the eXtreme to the Campus and Beyond, XSEDE12

Y2 - 16 July 2012 through 19 July 2012

ER -

A framework for federated two-factor authentication enabling cost-effective secure access to distributed cyberinfrastructure

Abstract

Publication series

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this