• How do I find which app is causing sign-on issues?

    I've been using Google two-factor authentication on my Galaxy tablet and I keep receiving this notification of a 'sign-in error' for my Google account. My Gmail and other apps are working fine but when I went into my settings on a different computer, and it revoked the application-specific password...

    ITKE409,175 pointsBadges:
  • How do I securely store a life-long access token?

    Does anyone know what security measures I should put in place to ensure that if my database was compromised, that my long-life access tokens wouldn't be stolen. Ideally, I would like to encrypt them but I'm not sure how I should do this (particularly when it comes to an open source project).

    ITKE409,175 pointsBadges:
  • How do I generate a secure token for a mobile app to protect its data?

    I recently developed a back end REST API for my mobile application and now I'm looking to implement token-based authentication so I avoid having the user to login every run on the application. My first thought was using basic authentication over SSL. So once the user sends the credentials through...

    ITKE409,175 pointsBadges:
  • What is the difference between RSA and DSA keys?

    I've been generating SSH authentication keys on our Linux/Unix system using ssh-keygen I've been given the choice of creating a RSA of DSA key pair (using -t type). Does anyone know the difference between RSA and DSA keys? Why should I choose one over the other?

    ITKE409,175 pointsBadges:
  • Setting up file authentication in Oracle 9i

    How can we set up a file authentication in Oracle 9i?

    989986944515 pointsBadges:
  • How to customize Plone login for two-factor authentication

    I'm pretty new to Plone and Python but I need to customize an existing plone installation login to include two-factor authentication from Duo-Security. Does anyone know the best way to do this? Would there be a Python API for this?

    ITKE409,175 pointsBadges:
  • How do I create a Windows 8 profile for shared key authentication?

    I've noticed that my Windows 8 won't let me connect to a wireless network that uses WEP with shared-key authentication. I ran Windows 8's network diagnostics wizard and it shows that one exists. The wireless network that you are trying to connect to requires shared-key authentication, a low...

    ITKE409,175 pointsBadges:
  • Is it possible to log out user from a web site if he is using basic authentication?

    Would it be possible to log out a user from our website if he/she is using basic authentication? I already know that killing a session isn't enough because once a user is authenticated, the request contains login information so the user is automatically logged in when they access the site again....

    ITKE409,175 pointsBadges:
  • How does changing your password every 90 days increase security?

    At my organization, I need to change my password every 90 days (and I've been as the company for several years). Is there a specific attack that this is guarding against? Or is it just because "it's the way that it's always been done?" I feel like the only time I should change my password is when...

    ITKE409,175 pointsBadges:
  • Do mobile networks use encryption on SMS when used for two-factor authentication?

    I understand that a ton of two-factor authentication mechanisms use SMS to deliver single-use passphrase to a user. But I'm looking to find out how secure it truly is. Would it be hard to intercept the SMS message containing the passphrase? Do any mobile networks use some kind of encryption on SMS?...

    ITKE409,175 pointsBadges:
  • What are the benefits of federated identity management over public key encryption?

    I just started at a security company and I'm looking to find out if it's better to have a federated identity system (OpenID) instead of a public key encryption. Can anybody explain the benefits of having a federated identity management system? I would appreciate any advice.

    ITKE409,175 pointsBadges:
  • What’s the best practice to generate random/unique tokens of custom length?

    I'm trying to create an identifier for forgot password. I've tried using a timestamp with mt_rand() but the timestamp isn't unique every time. Is there something I'm missing here? What's the best way to generate random tokens of custom length? Thank you.

    ITKE409,175 pointsBadges:
  • What is the difference between shared key and pre-shared key authentication?

    I'm sorry for the 'homework-type question' but does shared key and pre-shared key mean the same thing in terms of authentication? Does pre-shared mean that it's already been shared by different parties? Thank you for the help.

    ITKE409,175 pointsBadges:
  • How do I implement Single Sign-On in a Java application?

    I've started working with Java applications and I'm trying to implement a single sign-on and federation in my application. Basically, I want to implement claims aware application in Java. What's the best way to do that?

    ITKE409,175 pointsBadges:
  • How do I create a one-time password generator for a phone?

    Over the past few weeks, I've been trying to make a one-time password generator for a phone. In the RFC2289, it says I must fold the output of the MD5. I've been using bouncy castle MD5 and I'm having issues on how to fold the byte array output. Here's what I have so far: for (int i = 0; i < 8;...

    ITKE409,175 pointsBadges:
  • What is the difference between Federated Identity and Single Sign On authentication methods?

    Can anyone explain the difference between federated login and single sign-on authentication methods? Thank you very much.

    ITKE409,175 pointsBadges:
  • How do I authenticate a user from a client application while using the ASP.NET Web API?

    I'm looking to authenticate several users from a client application using ASP.NET Web API. I understand that the "Authorize" attribute correctly returns a 401 unauthorized status. But I need to know how to allow our users to login to the API. Thanks so much!

    ITKE409,175 pointsBadges:
  • How can I validate a username and password against Active Directory?

    Is there a way I can validate my friend's username and password against Active Directory? I'm trying to see if his username / password are correct. Thanks!

    ITKE409,175 pointsBadges:
  • How can I implement Google Authenticator in .NET apps?

    I'm trying to implement Google Authenticator in .NET apps...is there a tutorial on how to do this? I'm trying to add tw0-factor authentication to several of my applications and I heard this is the way to do it. I would appreciate the help.

    ITKE409,175 pointsBadges:
  • Windows Server 2003 schedule task could not run

    We run a schedule task on our 2003 server. The task to execute a program runs for 1 day only. The next day the task shows "could not start" and after reentering the password for authentication it would start again for another day. I know its not an authentication problem due to the task run all day...

    Kak5 pointsBadges:

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following