> I am looking for resources on other user authentication > methods for Coldfusion Applications. Besides having the > standard username/password what other methods can be used > within a Coldfusion Application. > > With this one application I need to know that the user who > entered the username/password is actually the person and not > someone who has hijacked the account. Any Ideas or resources.
This isn't really something that would be specific to CF applications. Instead, what you're looking for are ways you can perform web server authentication, such as using client certificates or hardware tokens in conjunction with SSL. http://www.microsoft.com/resources/documentation/WindowsServ/2003/standard/p roddocs/en-us/Default.asp?url=/resources/documentation/windowsserv/2003/stan dard/proddocs/en-us/sec_auth_certauth.asp (this is all one URL!) http://www.windowsitpro.com/Windows/Article/ArticleID/20807/20807.html http://www.rsasecurity.com/node.asp?id=1156 (RSA SecurID has been around a while, there are better hardware solutions, but I had this link handy) Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ Fig Leaf Software provides the highest caliber vendor-authorized instruction at our training centers in Washington DC, Atlanta, Chicago, Baltimore, Northern Virginia, or on-site at your location. Visit http://training.figleaf.com/ for more information! ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Find out how CFTicket can increase your company's customer support efficiency by 100% http://www.houseoffusion.com/banners/view.cfm?bannerid=49 Message: http://www.houseoffusion.com/lists.cfm/link=i:4:194346 Archives: http://www.houseoffusion.com/cf_lists/threads.cfm/4 Subscription: http://www.houseoffusion.com/lists.cfm/link=s:4 Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=11502.10531.4 Donations & Support: http://www.houseoffusion.com/tiny.cfm/54
