I haven't had any experience tying SecureID into CF but, I'm interested in
your decision to implement SecureID over PKI. If you don't mind sharing,
what were the major points driving this decision? I ask because I too am
interested in SecureID as well as PKI. PKI seems more cost effective, easier
to implement, and provides more security over the wire than SecureID. Of
course, SecureID has its strong points too, like the two factor
authentication. I am interested in hearing your experience.
Thanks,
Steve
-----Original Message-----
From: Bruce Altner [mailto:[EMAIL PROTECTED]]
Sent: Saturday, July 08, 2000 10:55 AM
To: [EMAIL PROTECTED]
Subject: strong authentication and CF
Greetings:
We're looking to build an application that will automate the process
whereby people "sign off" at various stages of a
work flow process. Security concerns dictate that we use some kind of
digital signature/strong authentication methodology such as certificates
(PKI), smartPass, etc. We're not ready for a PKI solution yet but are
considering one which uses the SecurID token system (from Security
Dynamics), which requires the user to input a number generated by the
token, which changes with time. The user is authenticated by a SecurID
server on one host (not a Web server) and we want to tie this to our CF
app, running on another server. I think we'll need to get CF to talk to the
other box through some API (TBD) via a CFX tag written in C++ or Java.
Has anyone had success doing this kind of thing? Suggestions for tools,
approaches would be welcome.
Thanks,
Bruce
------------------------------------------------------------------------------
Archives: http://www.mail-archive.com/[email protected]/
To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_talk or send a
message to [EMAIL PROTECTED] with 'unsubscribe' in the body.
