 |
|
 |
|
 |
 |
||
|
|
|
|
|
|
||
www.ecommerce-guide.com/news/trends/article.php/124851
By Mark Merkow, CCP, CISSP April 1, 1999 The Components Of PassfacesThe Passface System consists on the IdaClient and IdaServer. IdaClients are either Active-X controls for MS Internet Explorer versions 3.0+ or Java applets for either Netscape Navigator or MS IE 3.0+ browsers. IdaServer is a linkable library written in C and comes with HTML pages and CGI executables for customizing your installation. The Passface Web Toolkit is available through a free download from ID-Arts. It currently supports UNIX, Windows 95 and Windows NT. ID Arts will port the Passface technology to additional platforms during 1999.Passfaces makes no assumptions of the environment under which it operates and relies on your application to manage its own user authentication database. Because of this, you can link Passfaces into any existing security system through changes only to the interface layers. All ''new'' passwords will consist of references to Passfaces files that the user has pre-selected. SSL is recommended for transport of Passfaces authentication between the client and the server to prevent sniffing off the network the user IDs and string of Passfaces references. The next version of the Web Toolkit will also support the SPEKE cryptographic protocol to mitigate the need for SSL certificates on the server. Protection of the password file containing the references to the Passfaces and the Passface image files themselves require at least the same levels of security as would any file containing user ID and passwords. One plus of the Passfaces System is that any brute-force attack on the password file would only yield gibberish, providing an attacker with no useful information to log-in. Passfaces were introduced to the security community in January 1999 at the RSA Data Security Conference in San Jose, CA. The Passface Identity Verification System is covered under US Patent # 5608387 and is owned by Visage Development Limited (VDL). ID Arts operates as a trade name of VDL. |
| Go to page: Prev 1 2 3 4 5 6 Next |
|
|
Legal Notices, Licensing, Permissions, Privacy Policy.
Advertise | Newsletters | Shopping | E-mail Offers | Freelance Jobs 
