- Web Authentication - A system that automatically
tries multiple authentication methods (PKI, Kerberos, etc.)
- PKI Certificates - Stored in software only; less secure
than an eToken
- DND Authentication - Not very secure as it only requires a password to
verify your identity
- eTokens - PKI Certificate stored in hardware; most
secure
- Kerberos - Being phased out
Authentication is the process of verifying your
identity. Think of a Dartmouth ID card — it has your name on it and is
made in a way that is difficult to forge. In addition, there is
information embedded in the magnetic stripe on your Dartmouth ID. This
information verifies that you are a member of the Dartmouth community. A
PKI certificate or an eToken is simply another identity verification
method.
In order to protect critical business data and verify you are in fact
eligible to access some of Dartmouth's resources, we will be implementing
stronger authentication on critical systems during the coming years. It will be
best to be prepared and learn how to use Dartmouth's authentication systems
now. Currently, there are four systems in use, although we will be
standardizing on using the WebAuth system or PKI certificates either stored on
your computer in a software application (such as a Web browser) or one stored
on an eToken, and moving away from Kerberos and DND authentication for
Web-based systems. The PKI Certificate stored in a software application will be
used only in limited cases because it is less secure (it can be copied by
others if they have access to your computer).
For more information related to this topic, see:
|
