This site provides information on the use of cryptographic Smart Card technology to provide two-factor user authentication. Two factor refers to the concept that in order for a person to gain access to a resource, they must show that:
they know something (eg. a password or PIN number)
they have something (eg. a SecurID card or SmartCard)
Thus, employing username and password only is one factor authentication which is considered weaker, more susceptible to malicious compromise than two factor auth. System administrators need to evaluate the risk and consequences of an authentication system compromise and choose the appropriate system to minimize those.
The project consists of:
the issuance to participants of a cryptographic SmartCard device which contains a digital certificate. The device is an eToken, an Aladdin product.
the use of the device to provide user authentication for various computer applications.
the maintenance of that device: management of lost or stolen devices, forgotten user passwords and renewal of digital certificates.
