Tech Center Authentication
Dark Reading's Authentication Tech Center is your portal to all the news, product information, technical data, and other information related to the topic of computer user authentication and certification. Written for executives and businesspeople as well as security and IT professionals, the AuthenticationTech Center is a single community dedicated to a single idea: ensuring that computer users are who they say they are.
Featured Commentary
-
Kelly Jackson HigginsScan My Eyeball, Already
Could consumers be the catalyst for the password's ultimate demise?
News
-
Twitter Adds SMS As Second Factor Of Authentication
Phone will be second means of verifying user identity, Twitter says
-
The Future Of Web Authentication
After years of relying on passwords, technology vendors -- and enterprises -- are ready for new methods of proving user identity.
-
Consumers Want Biometrics, Survey Finds
New Ponemon Institute study shows disillusionment and problems with passwords in online transactions
-
Apple Patches Password Reset Vulnerability
Bug wouldn't have been blocked by Apple's new two-factor iTunes authentication due to system's three-day waiting period
-
Good News From Google: Account Hijacking Down
How Google is verifying logins, getting results
More Stories
- Tech Insight: New CA Group Has Big Names, Small Impact
- Major Certificate Authorities Unite In The Name Of SSL Security
- Symantec/VeriSign Expands Encryption Options For SSL Digital Certificates
- New Security Industry Alliance, Startup Company Promise Revolution In Authentication
- How Lockheed Martin's 'Kill Chain' Stopped SecurID Attack
By The Numbers
Certificates The Biggest Authenticator
Certificates still outpace other authenticators within the enterprise. Meanwhile, in spite of technological improvements, biometrics is still used by less than a quarter of organizations.
Commentary
-
Rethinking Identity Management
By Tim Wilson
Secret identities are a good thing. Multiple identities? Not so much
-
Cisco Reports Some IOS Passwords Weakly Hashed
Type 4 plain-text user passwords on Cisco IOS and Cisco IOS XE devices are hashed not according to spec, but with no salt and just one SHA-256 iteration. Working around the problem can be clumsy
-
The Road To Hell Is Authenticated By Facebook
OAuth allows us to log into many sites using familiar credentials, from Twitter, Facebook, Google or Microsoft. The main author of the original OAuth 1.0 spec says these giants took it and made OAuth 2.0 a monstrous, complex, and insecure mess that has already brought us significant vulnerabilities
-
Online And Physical User Identities
Some data-owning businesses are getting into the Internet authentication market -- and that's good news
-
Silent Authentication
Authenticating users without explicit login
Around the Web
Dark Reading Reports
-
What's Next for Certificate Technology
A recent rash of certificate authority breaches has left a bad taste in many people's mouths. There is no one reason for the breaches. The compromises were the result of a breakdown in people, processes and technology, but not necessarily the certificates themselves. We take a look at what's wrong with certificate technology, what can be done to fix it, and what's down the road for certificates and CAs.
-
Will Smartcards Live Up to Their Name?
Recent compromises of smartcard data have exacerbated concerns about the technology?s privacy, security and standards (or lack thereof). Yet the promise of smartcards is too compelling to ignore. New technologies and applications prompt us to take a fresh look.
-
Get The Best Of Biometrics
As data volume and sensitivity grow, companies cannot rely on password- and token-based authentication. Biometrics can be used to provide strong access control, but you must weigh added complexity and costs against assurance that users are who they say they are.
Other reports from the Authentication Tech Center:
Whitepapers
- HP Newsletter with Gartner Research: Maximizing Your Infrastructure through Virtualization
- Understanding Holistic Database Security 8 Steps to Successfully Securing Enterprise Data Sources
- Holistic Risk Management: Perspectives from IT Professionals
- Transitioning Business Continuity To The Cloud
- Cloud-based data backup: A buyer's guide - How to choose a third-party provider for development, management of your data backup solution
Upcoming Events
Dark Reading Digital Magazine
In This Issue
- The Future Of Web Authentication: Password technology is out of steam. We need safer ways to prove who's who online.
- Rethink ID Management: If the technology continues to improve, it might soon be OK for all of us to be one person on the Web.