Scribd Logo
Încărcați

Bine ați venit la Scribd!

  • Zaizi Alfresco Solutions - Securing Alfresco For Extranet Access

    Încărcat de

    Zaizi Ltd
    1K vizualizări14 pagini
    - To allow to users to evaluate the strength of their password, - To allow to users to reset their password, - To add a CAPTCHA system, - To define password and account expiration dates, - To disable accounts, - To define a maximum of login attempts, - To add an OpenID authentication (based on Google), - To add a two factor authentication using iPhone App.

    Titlu original

    Zaizi Alfresco Solutions - Securing Alfresco for Extranet Access

    Drepturi de autor

    © Attribution Non-Commercial ShareAlike (BY-NC-SA)

    Formate disponibile

    PDF sau citiți online pe Scribd

    Vi se pare util acest document?

    Este necorespunzător acest conținut?

    Raportați acest document
    - To allow to users to evaluate the strength of their password, - To allow to users to reset their password, - To add a CAPTCHA system, - To define password and account expiration dates, - To disable accounts, - To define a maximum of login attempts, - To add an OpenID authentication (based on Google), - To add a two factor authentication using iPhone App.

    Drepturi de autor:

    Attribution Non-Commercial ShareAlike (BY-NC-SA)
    Descărcați ca PDF sau citiți online pe Scribd
    Indicator pentru conținut neadecvat
    1K vizualizări14 pagini

    Zaizi Alfresco Solutions - Securing Alfresco For Extranet Access

    Încărcat de

    Zaizi Ltd
    - To allow to users to evaluate the strength of their password, - To allow to users to reset their password, - To add a CAPTCHA system, - To define password and account expiration dates, - To disable accounts, - To define a maximum of login attempts, - To add an OpenID authentication (based on Google), - To add a two factor authentication using iPhone App.

    Drepturi de autor:

    Attribution Non-Commercial ShareAlike (BY-NC-SA)
    Descărcați ca PDF sau citiți online pe Scribd
    Indicator pentru conținut neadecvat
    din 14

    How to secure Alfresco ?

    Monday, 24 October 2011

    Introduction
    The goal of this short slide show is to demonstrate what can be done to reinforce authentication. To achieve our objectives, we improved the Alfresco authentication system : To allow to users to evaluate the strength of their password, To allow to users to reset their password, To add a CAPTCHA system, To dene password and account expiration dates, To disable accounts, To dene a maximum of login attempts, To add an OpenID authentication (based on Google), To add a 2-Factor authentication.
    Alfresco Architecture
    Monday, 24 October 2011

    Password Strength
    We added a new component to allow to users to evaluate their password strength. Users can improve the global security by themselves.

    Alfresco Architecture
    Monday, 24 October 2011

    Reset password

    This feature simplies the administrators task. This one improves security by generating strong password. This feature could be called every month to reset all users password.

    Alfresco Architecture
    Monday, 24 October 2011

    CAPTCHA Systems
    A CAPTCHA is a program that can tell whether its user is a human or a computer. To decrease the number of login attempts.

    Use an open-source library called reCAPTCHA (that helps to digitize books).

    Alfresco Architecture
    Monday, 24 October 2011

    Expiration dates
    Administrators can dene an account and password expiration date for each user.

    Alfresco Architecture
    Monday, 24 October 2011

    Disabled accounts
    Administrators can enable/disable account.

    Alfresco Architecture
    Monday, 24 October 2011

    Maximum login attempts


    We can dene a maximum login attempts (be default 3). After 3 unsuccessful login attempts, the account is automatically locked.

    Alfresco Architecture
    Monday, 24 October 2011

    OpenID authentication
    OpenID is a safe, faster, and easier way to log in to web sites. OpenID Users Benets: Fewer usernames and passwords to remember Helps protect personal identity information Globally unique,Is that the same David? Ability to know where you've shared information

    Alfresco Architecture
    Monday, 24 October 2011

    OpenID Authentication

    OpenID Authentication ? Ask login to google User is logged to Google. Register user as trusted user Conrmation to continue Login as trusted user User logged to Alfresco

    Alfresco Architecture
    Monday, 24 October 2011

    2-Factor authentication
    A 2FA authentication (or strong authentication) is an approach to authentication which requires the presentation of two different kinds of evidence: Something known, like a password, (e.g. Alfresco password) Something unique (e.g. OTP or One-time password). In this example, we used a 2FA authentication called WiKID.

    Alfresco Architecture
    Monday, 24 October 2011

    2-Factor authentication

    Authentication Ask a passcode (OTP) for Alfresco ? Create a passcode

    Passcode valid for 90 seconds The user lls the passcode in Alfresco Share Passcode valid ? Passcode valid for Alfresco ?

    Passcode OK Login with username/password User logged

    Passcode OK

    Disable the passcode

    Alfresco Platform design


    Monday, 24 October 2011

    2-Factor authentication

    Username ? Password ?

    Alfresco Platform design


    Monday, 24 October 2011

    Thank You

    Monday, 24 October 2011

    S-ar putea să vă placă și