Secure Two-Factor Authentication with SwissPass Crypto Card: A Case Study

Laube, Annett; Koenig, Reto (30 November 2017). Secure Two-Factor Authentication with SwissPass Crypto Card: A Case Study In: Future Technologies Conference (FTC). Vancouver. 2017.

[img] Text
116_Paper_393-Secure_Two-Factor_Authentication_with_SwissPass.pdf - Published Version
Restricted to registered users only
Available under License Publisher holds Copyright.

Download (1MB) | Request a copy

Two-factor authentication requires two pieces of independent evidence, mostly one based on possession and the second based on knowledge. The major drawback of these methods are usability and the costs to procure and (re)place the hardware token. The SwissPass is a contactless crypto card mainly used to inspect travel tickets (GA and Half-Fare travel cards) by the Swiss federal railways. This paper presents an authentication protocol using the widely spread SwissPass that allows to log in into web and mobile applications in a secure and intuitive way via smart phone. The protocols are further developed to create the SwissPass Authenticator providing federated authentication on the smart phone.

Item Type:

Conference or Workshop Item (Paper)

Division/Institute:

School of Engineering and Computer Science > Institute for Data Applications and Security (IDAS)
BFH Centres and strategic thematic fields > BFH Centre for the Digital Society
School of Engineering and Computer Science > Institute for ICT-based Management (ICTM)

Name:

Laube, Annett and
Koenig, Reto

Subjects:

Q Science > QA Mathematics > QA76 Computer software
T Technology > T Technology (General)

Language:

English

Submitter:

Annett Laube

Date Deposited:

18 Mar 2020 12:30

Last Modified:

18 Mar 2020 12:30

ARBOR DOI:

10.24451/arbor.9592

URI:

https://arbor.bfh.ch/id/eprint/9592

Actions (login required)

View Item View Item
Provide Feedback