SANS Institute

the most trusted source for computer security training, certification and research

SANS InfoSec Reading Room - Authentication

<<Reading Room Home

Most of the computer security white papers in the Reading Room have been written by students seeking GIAC certification to fulfill part of their certification requirements and are provided by SANS as a resource to benefit the security community at large. SANS attempts to ensure the accuracy of information, but papers are published "as is". Errors or inconsistencies may exist or may be introduced over time as material becomes dated. If you suspect a serious error, please contact webmaster@sans.org.

Featuring 48 papers as of Oct 6, 2008

Implementing Single Sign-On — Imprivata OneSign™: Robert Turner; August 7, 2007; - download paper

Simple Formula for Strong Passwords (SFSP) Tutorial: Bernie Thomas; May 17, 2005; - download paper

Installing a Secure Network DHCP Registration System: Pam Fournier; May 5, 2005; - download paper

Secure implementation of Enterprise single sign-on product in an organization: Ravikanth Ponnapalli; January 18, 2005; - download paper

An Exploration of Voice Biometrics: Lisa Myers; July 25, 2004; - download paper

Single Sign On Concepts & Protocols: Sandeep Sandhu; March 25, 2004; - download paper

Dont Blink:Iris Recognition for Biometric Identification: Mary Dunker; March 9, 2004; - download paper

Biometrics: An In Depth Examination: Kyle Cherry; March 2, 2004; - download paper

Convergence of Logical and Physical Security: Yahya Mehdizadeh; January 11, 2004; - download paper

Biometrics: Technology That Gives You a Password You Can't Share: Yevgeniy Libov; October 31, 2003; - download paper

Overview of S/Key usage with OpenBSD: Christian Lecompte; October 31, 2003; - download paper

Proximity Authentication: Ali Merayyan; October 31, 2003; - download paper

Clear Text Password Risk Assessment Documentation: Kimberly Rallo; October 31, 2003; - download paper

Password Protection: Is This the Best We Can Do?: Jason Mortensen; October 31, 2003; - download paper

Inadequate Password Policies Can Lead to Problems: Leonard Hermens; October 31, 2003; - download paper

An Overview of Different Authentication Methods and Protocols: Richard Duncan; October 31, 2003; - download paper

Technical Aspect of Implementing/Upgrading SAP Security 4.6: Mary E. Sims; October 31, 2003; - download paper

A Concept for Universal Identification: Daniel E. Williams; October 31, 2003; - download paper

Biometrics and User Authentication: Michael Zimmerman; October 31, 2003; - download paper

Authentication and Authorization: The Big Picture with IEEE 802.1X: Arthur Fisher; October 31, 2003; - download paper

More Than a Pretty Face, Biometrics and SmartCard Tokens: Gregory Williams; October 31, 2003; - download paper

Biometric Technology Stomps Identity Theft: Seyoum "Zeg" Zegiorgis; October 31, 2003; - download paper

Securing Access: Making Passwords a Legitimate Corporate Defense: David H. Sherrod; October 31, 2003; - download paper

Build a Web Interface to Allow Users to Change their Passwords (The Web Password Page): Mark Holbrook; October 31, 2003; - download paper

Java Smart Cards Are Here To Stay: Benefits And Concerns: Sonia Otero; October 31, 2003; - download paper

Web Single Sign-On Meets Business Reality: Tim Mather; October 31, 2003; - download paper

Smart Cards: How Secure Are They?: John Abbott; October 31, 2003; - download paper

Iris Recognition Technology for Improved Authentication: Penny Khaw; October 31, 2003; - download paper

Biometrics: A Double Edged Sword - Security and Privacy: Wayne Penny; October 31, 2003; - download paper

Making Smart Cards Work In the Enterprise: Brett Lewis; October 31, 2003; - download paper

Biometric Selection: Body Parts Online: Steven M. Walker; October 31, 2003; - download paper

Single Sign On Through Password Synchronization: Nancy Loveland; October 31, 2003; - download paper

Combating the Lazy User: An Examination of Various Password Policies and Guidelines: Sam Wilson; October 31, 2003; - download paper

Iris Recognition: Closer Than We Think?: Miltiades Leonidou; October 31, 2003; - download paper

Shedding some light on Voice Authentication: Dualta Currie; October 31, 2003; - download paper

Biometrics: Are YOU the Key to Security?: Patricia Wittich; October 31, 2003; - download paper

In Pursuit of Liberty?: Randy Mahrt; October 31, 2003; - download paper

An Introduction to Identity Management: Spencer Lee; October 31, 2003; - download paper

It's All About Authentication: Douglas Graham; October 31, 2003; - download paper

Identity Management: Kevin Kaufman; October 31, 2003; - download paper

Identity Protection and Smart Card Adoption in America: Stephen Irwin; October 31, 2003; - download paper

Passwords are DEAD! (Long live passwords?): David Beverstock; October 31, 2003; - download paper

L is for Login: Carolee Rand; October 31, 2003; - download paper

Biometric Scanning Technologies: Finger, Facial and Retinal Scanning: Edmund Spinella; October 31, 2003; - download paper

Common issues in PKI implementations - climbing the "Slope of Enlightenment": Angela Keith; October 31, 2003; - download paper

Considerations For Implementing Single Sign-On Within The Enterprise: Russell Hobbs; October 31, 2003; - download paper

Strengthening Authentication with Biometric Technology: Tricia Olsson; October 31, 2003; - download paper

Preventing the fraudulent use of Internet DSL accesses by dial-up accounts: a network authentication issue.: Bruno Germain; October 31, 2003; - download paper

SANS Reading Room

Check Them Out!

This is hands-down, the premiere training opportunity.
- Dan Mather, JICPAC

SANS Monterey 2008 -skyscraper

Contact us: (301) 654-SANS(7267)
Monday - Friday 9am-8pm EST/EDT