[转载]A Strong Authentication Mechanism for Consumer-Facing Online Transaction

信息来源：邪恶八进制信息安全团队（www.eviloctal.com）

Most consumer-facing online applications such as banking and e-commerce rely primarily on single- factor authentication schemes to authenticate users. Such schemes, while easy to use, suffer from easily exploitable security vulnerabilities that cost business billions of dollars per year. While alternative authentication mechanisms such as biometrics and two-factor schemes provide increased security, neither is currently viable for the consumer market. This project proposes an economically practical and user- friendly two-factor authentication mechanism that uses a familiar end- user device—the cell phone—as the second factor in authentication. The system implemented in this project includes a server component and a client component. The server piece is an enterprise-grade authentication server that features pluggable authenticators, configuration management, and identity management. The client piece consists of software that runs locally on a Java-enabled cell phone to generate passcodes for multiple services.