Secure Two-Factor Authentication with SwissPass Crypto Card: A Case Study

Laube, Annett; Koenig, Reto (30 November 2017). Secure Two-Factor Authentication with SwissPass Crypto Card: A Case Study In: Future Technologies Conference (FTC). Vancouver. 2017.

[img] Text
116_Paper_393-Secure_Two-Factor_Authentication_with_SwissPass.pdf - Published Version
Restricted to registered users only
Available under License Publisher holds Copyright.

Download (1MB) | Request a copy

Two-factor authentication requires two pieces of independent evidence, mostly one based on possession and the second based on knowledge. The major drawback of these methods are usability and the costs to procure and (re)place the hardware token. The SwissPass is a contactless crypto card mainly used to inspect travel tickets (GA and Half-Fare travel cards) by the Swiss federal railways. This paper presents an authentication protocol using the widely spread SwissPass that allows to log in into web and mobile applications in a secure and intuitive way via smart phone. The protocols are further developed to create the SwissPass Authenticator providing federated authentication on the smart phone.

Item Type:

Conference or Workshop Item (Paper)


Department of Engineering and Information Technology > Institute for ICT-Based Management
BFH Zentren > BFH Zentrum Digital Society


Laube, Annett and Koenig, Reto


Q Science > QA Mathematics > QA76 Computer software
T Technology > T Technology (General)




Annett Laube

Date Deposited:

18 Mar 2020 12:30

Last Modified:

18 Mar 2020 12:30




Actions (login required)

View Item View Item
Provide Feedback