A Framework for Multi-mode Authentication: Overview and Implementation Guide
| dc.contributor.author | Jansen, Wayne | |
| dc.contributor.author | Korolev, Vladimir | |
| dc.contributor.author | Gavrila, Serban I. | |
| dc.contributor.author | Heute, T. | |
| dc.contributor.author | Seveillac, Clement | |
| dc.date.accessioned | 2018-12-14T16:09:09Z | |
| dc.date.available | 2018-12-14T16:09:09Z | |
| dc.date.issued | 2003-08-01 | |
| dc.description.abstract | The use of mobile handheld devices within the workplace is expanding rapidly. These devices are no longer viewed as coveted gadgets for early technology adopters, but have instead become indispensable tools that offer competitive business advantages for the mobile workforce. While these devices provide productivity benefits, they also pose new risks to an organization's security. Enabling adequate user authentication is the first line of defense against unauthorized use of a lost or stolen handheld device. Multiple modes of authentication increase the work factor needed to attack a device, however, few devices support more than one mode, usually password-based authentication. This report describes a general Multi-mode Authentication Framework (MAF) for applying organizational security policies, organized into distinct policy contexts known as echelons, among which a user may transition. The approach is aimed at helping users easily comply with their organization's security policy, yet be able to exercise a significant amount of flexibility and discretion. The design of the framework allows various types of authentication technologies to be incorporated readily and provides a simple interface for supporting different types policy enforcement mechanisms. Details of the implementation of the framework are provided, as well as two example authentications mechanisms. | en_US |
| dc.description.uri | https://www.nist.gov/publications/framework-multi-mode-authentication-overview-and-implementation-guide | en_US |
| dc.format.extent | 35 pages | en_US |
| dc.genre | reports | en_US |
| dc.identifier | doi:10.13016/M2ST7F18D | |
| dc.identifier.uri | http://hdl.handle.net/11603/12263 | |
| dc.language.iso | en_US | en_US |
| dc.relation.isAvailableAt | The University of Maryland, Baltimore County (UMBC) | |
| dc.relation.ispartof | UMBC Computer Science and Electrical Engineering Department Collection | |
| dc.relation.ispartof | UMBC Student Collection | |
| dc.relation.ispartof | UMBC Faculty Collection | |
| dc.rights | This item is likely protected under Title 17 of the U.S. Copyright Law. Unless on a Creative Commons license, for uses protected by Copyright Law, contact the copyright holder or the author. | |
| dc.rights | This is a work of the United States Government. In accordance with 17 U.S.C. 105, no copyright protection is available for such works under U.S. Law. | |
| dc.rights | Public Domain Mark 1.0 | |
| dc.rights | http://creativecommons.org/publicdomain/mark/1.0/ | |
| dc.subject | authentication | en_US |
| dc.subject | MAF | en_US |
| dc.subject | mobile devices | en_US |
| dc.subject | multi-mode authentication framework | en_US |
| dc.subject | personal digital assistant | en_US |
| dc.subject | security policy | en_US |
| dc.title | A Framework for Multi-mode Authentication: Overview and Implementation Guide | en_US |
| dc.type | Text | en_US |