|
AuthFW identity framework is an implementation of a single sign on
authentication infrastructure. It was designed with some keywords in
mind: responsibility, transparancy, flexibility, scalability.
The concept of one server for one task is not only realized within
the framework, but also at the edges of the framework: each website
within a domain can offer its services to a single user. The concept
of single sign on...
The framework itself is built around 4 types of servers:
WebService AuthenticationService RegistrationService Backend
Some features of the system are...
Protecting user information is a topic that must be on top of
everybody's list who maintains this type of information. AuthFW makes sure
that you can achieve this in the most elegant way, since there is
only one place where confidential user information must be stored,
and this place can be locked down and secured.
Protecting accounts with a password is sufficient in most
circumstances. Still, there are many services where you need a
stronger means of authentication. AuthFW is prepared to integrate
every existing authentication method into its frame. Without changes
to protocols or websites. Authenticate using a connected or
unconnected smartcard system, biometric authentication, public key
certificates, everything is possible.
The WebService adapter is a homogenous module that is available for different environments. Also, the source is available for everybody to finetune to their own system. Integrating the WebService adapter is simply following well documented steps and you're ready to go!
The design of the protocols enables the flexibility to deploy redundant servers. This means that peaks in traffic can be dealt with without failures, making Cozmanova's AuthFW the perfect framework to integrate in your webservices. It can deal with userstores of a hunderd users up to millions of users.
Because the services that are related to account management can be
maintained independent of the webservices that actually use the
user's identity, a common style can be deployed, which the user can
recognize and trust. And using secure authentication methods (i.e.
iKey, SmartCard), the 'phishing' phenomenon can be dealt with
appropriately.
Cozmanova has designed the protocols in such a way that the user
is in control of what happens with its account. There are no hidden
data exchanges going on in the background, all interaction is
initiated by the user, and can be intercepted by the user to see what
is actually going on.
Within the framework, a powerful authorization mechanism is part
of the WebService adapters. This means that you can implement your
own authorization policies within AuthFW, manage users by assigning
them into different groups, etc.
After deploying AuthFW, the only thing is does is get bigger and offer more services. The framework is ready to be extended with loads more services that can be deployed without breaking other applications within the domain.
The possibilities are endless. Using the latest in trusted
technology, Cozmanova's Identity Framework implementation offers a
stable and secure environment to implement authenticated services on
your websites.
The philosophy section will elaborate on the ideas driving the
development of AuthFW. In the elements section, you can learn more
about the scope and design of each element of AuthFW. When you want
to learn about the protocols and how data protection is being
realized, please visit the protocols section.
Finally, because of the flexible design of the framework, it will
keep expanding and adding new services. The section about the future
of AuthFW will take you to what's to come...
Please contact us if you are interested in using AuthFW for your
organisation or if you would like to learn more.
|
