Säkerhetsutvärdering certifikatserver i stället för aktiva kort
Independent thesis Basic level (professional degree)Student thesisAlternative title
Security evaluation certificate server instead of smartcard (English)
Business and organizations use computer network in a greater extension than ever before, especially for business-critical use. That increase the demand of security for all systems, both against internal and external threats. The demand on the authentication method used today increases. Today they normally uses password or some kind of smart card.
I will performa literature study that will investigate the possibility to increase the security in authentication of users without the use of extra hardware. The method uses a server that stores all cryptographic keys for the user centrally to achieve stronger security. This report is based on a previous report which tested to implement this solution, in this report I will question the security of this system. I will then give an architecture proposal where this method is used to authenticate and allow cryptographic recourses for the user.
The conclusions you can get from this report is that the possibilities with comparable ease increase the security without investing in new hardware. But the solution will not be comparable by a ``smart card solution''in security levels. That means that the method described in this thesis is suitable for organizations that either do not need that strong security as smart card give or want a good solution without being forced to use some external hardware.
Place, publisher, year, edition, pages
Institutionen för systemteknik , 2005.
Informationsteknik, Authentication, securityserver, certificate server, reverse turing test, cryptographic, smartcard
Computer and Information Science
IdentifiersURN: urn:nbn:se:liu:diva-2844ISRN: LITH-ISY-EX--05/3653--SEOAI: oai:DiVA.org:liu-2844DiVA: diva2:20187