Making authentication stronger and cheaper with web of trust

In higher education and research there is a need for stronger authentication solutions without the cost and overhead of physical user registration and complexity of many other remote registration solutions. The idea is to use the web of trust concept to establish the authenticity of the binding between an authentication solution and its owner via third party user attests. This approach is a kind of “crowdsourcing of trust” about the identity of the user. A concrete example is the use of the mobile phone as a second authentication factor. Other users can make attests towards the identity provider about the number of the mobile phone of a particular user allowing it to be used as a reliable second factor during e.g. a step-up authentication scenario.


Part of session

Thunderbolts and Lightning

Related documents