Presentation is loading. Please wait.

Presentation is loading. Please wait.

VETUMA, the web portal for strong authentication Tietotekniikkaosasto Ismo Aulaskari 2.9.2008.

Published byJennifer Ferguson Modified over 8 years ago

Similar presentations

Presentation on theme: "VETUMA, the web portal for strong authentication Tietotekniikkaosasto Ismo Aulaskari 2.9.2008."— Presentation transcript:

1 VETUMA, the web portal for strong authentication Tietotekniikkaosasto Ismo Aulaskari 2.9.2008

2 VETUMA Government-funded web-authentication portal Provides one (documented, open) interface for multiple strong authentication services, including Bank authentication (most popular)‏ Certificate card authentication (government FINEID for the public)‏ Mobile phone authentication (several methods, including FINEID)‏ User authentication, digital signatures, money transfers(with bank authentication)

3 Getting it So far, the government has paid for about half of the expenses for user organisations The government has also licenced the “offical” Vetuma client software(Java) for free to government use University of Helsinki develops its own free software implementation of the Vetuma client (in Perl)‏ First version was made as a pilot project for the CSC

4 Use cases for strong authentication by VETUMA Password resetting service Registering new users online Creating one-time password lists Technically also possible to combine with a public IDP for a Shibboleth federation Too expensive for daily tasks such as authenticating workstations etc.

5 Password resetting service Password resetting for multiple user account types Edirectory, Active Directory, Unix Two different interfaces LDAP homegrown web service

6 User account creation Web forms where the strongly authenticated user is guided through the user account creation process So far, at least 75% of new students have succeeded in using the service Some of the rest however, among other things tried to use borrowed bank account codes to authenticate themselves.. Also, students seem reluctant to read all the text they should when given a user account for a university network

7 Other things to notice As the authentications cost money to the university, access to the service must be limited to a reasonable number of attempts (by social security code and ip-address)‏ Making the directions for the service is a lot of work, especially in 3 different languages It would be possible for HU to compete with the Vetuma service by implementing the multiple interfaces directly

8 What?

Download ppt "VETUMA, the web portal for strong authentication Tietotekniikkaosasto Ismo Aulaskari 2.9.2008."

Similar presentations

1 Copyright © 2002 Pearson Education, Inc.. 2 Chapter 1 Introduction to Perl and CGI.

1 Copyright © 2002 Pearson Education, Inc.. 2 Chapter 1 Introduction to Perl and CGI.
Federated Access implementation: experience of AUCA Library - Kyrgyzstan 4 th -7 th June, 2008, Aberdeen, Scotland Sania Battalova, EIFL Country and FOSS.

Federated Access implementation: experience of AUCA Library - Kyrgyzstan 4 th -7 th June, 2008, Aberdeen, Scotland Sania Battalova, EIFL Country and FOSS.
A Reliable and Secure Network TM105: ESTABLISHING SANE TECHNOLOGY POLICIES FOR YOUR PROGRAM.

A Reliable and Secure Network TM105: ESTABLISHING SANE TECHNOLOGY POLICIES FOR YOUR PROGRAM.
Taxpayers registration and e-services provided by the Estonian Tax and Customs Board Karin Aleksandrov Chief Expert Service Management Department.

Taxpayers registration and e-services provided by the Estonian Tax and Customs Board Karin Aleksandrov Chief Expert Service Management Department.
Omni eControl. New Features in Version 2.x - Manage Mixed Networks: eDirectory, Active Directory, GroupWise, Exchange eControl Version 2.0 New Features.

Omni eControl. New Features in Version 2.x - Manage Mixed Networks: eDirectory, Active Directory, GroupWise, Exchange eControl Version 2.0 New Features.
Michal Bodlák. Referred to as mobile money, mobile money transfer, and mobile wallet generally refer to payment services operated under financial regulation.

Michal Bodlák. Referred to as mobile money, mobile money transfer, and mobile wallet generally refer to payment services operated under financial regulation.
Why Web services should care about grid security Taavi Hupponen, CSC.

Why Web services should care about grid security Taavi Hupponen, CSC.
Policing the Power of Identity Controls Power Behavior Verify that controls are in place and functioning Monitor user behavior and verify that people.

Policing the Power of Identity Controls Power Behavior Verify that controls are in place and functioning Monitor user behavior and verify that people.
Additions / Amendments 1.My Account 1.Register 2.Login 3.Log out 4.Recover password 2.My Location 1.Select town e.g Lymington 2.Home page now deliver.

Additions / Amendments 1.My Account 1.Register 2.Login 3.Log out 4.Recover password 2.My Location 1.Select town e.g Lymington 2.Home page now deliver.
Cross Platform Single Sign On using client certificates Emmanuel Ormancey, Alberto Pace Internet Services group CERN, Information Technology department.

Cross Platform Single Sign On using client certificates Emmanuel Ormancey, Alberto Pace Internet Services group CERN, Information Technology department.
Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.

Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.
Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.

Environmental Council of States Network Authentication and Authorization Services The Shared Security Component February 28, 2005.
Federated Identity, Levels of Assurance, and the InCommon Silver Certification Jim Green Identity Management Academic Technology Services © Michigan State.

Federated Identity, Levels of Assurance, and the InCommon Silver Certification Jim Green Identity Management Academic Technology Services © Michigan State.
FIT3105 Smart card based authentication and identity management Lecture 4.

FIT3105 Smart card based authentication and identity management Lecture 4.
Moving Your Paperwork Online Western Washington University E-Sign Web Forms Copyright Western Washington University, 2004. This work is the intellectual.

Moving Your Paperwork Online Western Washington University E-Sign Web Forms Copyright Western Washington University, This work is the intellectual.
Federated Shibboleth, OpenID, oAuth, and Multifactor | 1 Federated Shibboleth, OpenID, oAuth, and Multifactor Russell Beall Senior Programmer/Analyst University.

Federated Shibboleth, OpenID, oAuth, and Multifactor | 1 Federated Shibboleth, OpenID, oAuth, and Multifactor Russell Beall Senior Programmer/Analyst University.
Online and Mobile Banking. Online banking Online Banking  Online banking is a fairly established practice in our internet-saturated world.  Many people.

Online and Mobile Banking. Online banking Online Banking  Online banking is a fairly established practice in our internet-saturated world.  Many people.
Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.

Copyright © The OWASP Foundation Permission is granted to copy, distribute and/or modify this document under the terms of the OWASP License. The OWASP.
Get Started With Marketing!. Marketing on Your Mind?  This presentation will include: Info for New and Experienced Users Ideas for marketing to Students.

Get Started With Marketing!. Marketing on Your Mind?  This presentation will include: Info for New and Experienced Users Ideas for marketing to Students.
Empowering Business Dhan (Co-Founder) www.zilicus.com.

Empowering Business Dhan (Co-Founder)

Similar presentations

Ads by Google