This slide has been presented at the eZ Publish Winter Conference 2011 in Nice.
This presents an eZ Publish extension to add a two-factor authentication to this CMS.
1. YUBIKEY EXTENSION
TWO-FACTOR AUTHENTICATION SUPPORT TO EZ PUBLISH
NGUYEN DINH QUOC-HUY WWW.QUOC-HUY.COM
Friday, 28 January 2011
2. What is the YubiKey?
USB-Key for secure, easy and
affordable login to networks and
services
Acts like a keyboard
Local or on the Cloud
Available with RFID
Friday, 28 January 2011
3. Some YubiKey specs
Secure with a 128 bit 44
characters OTP
Small, flat and lightweight
Robust, waterproof, crush-
resistant & hermetically sealed
Environmental friendly: battery
free, no LCD display
Friday, 28 January 2011
4. Some applications using YubiKey
Google Apps Premium
LastPass password manager
Rohos Logon for Mac and Win.
TrueCrypt disk encryption
Friday, 28 January 2011
5. YubiKey & eZ Publish
To offer a more secure way to login
into your favourite CMS
Two factor authentication in
combination with the existing
password
One factor authentication to replace
the existing password
Friday, 28 January 2011
6. How does it work?
Custom login handler
New datatype to record and validate the
YubiKey generated OTP
Custom login template
Support for an alternative/backup key
Friday, 28 January 2011
7. How to use it?
Install and activate the
‘qhyubikey’ extension
Regenerate autoload array
Edit the ‘user’ content class and
add a new ‘YubiKey’ attribute
Edit your user account and
register your yubikey(s) by
recording their OTP
Friday, 28 January 2011
8. Thank you!
My website:
http://www.quoc-huy.com/
QHYubiKey:
http://projects.ez.no/yubico_yubikey_otp_extension_for_ez_publish
Yubico’s YubiKey:
http://www.yubico.com/
Friday, 28 January 2011