{"id":249,"date":"2009-08-28T10:19:48","date_gmt":"2009-08-28T14:19:48","guid":{"rendered":"http:\/\/blogs.law.harvard.edu\/brandonhaynes\/?p=249"},"modified":"2009-09-06T11:57:06","modified_gmt":"2009-09-06T15:57:06","slug":"whitepaper-dotnetnuke-multi-factor-authentication","status":"publish","type":"post","link":"https:\/\/archive.blogs.harvard.edu\/brandonhaynes\/2009\/08\/28\/whitepaper-dotnetnuke-multi-factor-authentication\/","title":{"rendered":"Whitepaper: DotNetNuke Multi-Factor Authentication"},"content":{"rendered":"

I am pleased to make available a whitepaper detailing the high-level motivation and approach involved in the creation of the recently-released DotNetNuke Multi-Factor Authentication Provider<\/a>, along with a discussion of the unique characteristics of a DotNetNuke<\/a> installation that render the approaches of other vendors (e.g. RSA SecurID<\/a>) incomplete or unsatisfactory. Additionally, each out-of-the-box factor is described in general detail in a format that is digestible by an audience of varying technical sophistication.<\/p>\n

This paper is intended for all audiences who might have an interest in overall DotNetNuke installation security, and is designed to assist management in identifying an appropriate level of authentication-related risk.<\/p>\n