> -----Original Message-----
> From: [log in to unmask]
> [mailto:[log in to unmask]]On Behalf Of Adrian Midgley
> Sent: 29 November 1998 13:09
> To: [log in to unmask]
> Subject: Info please, ISDN ensures strong authentication?
>
>
> It is just my ignorance showing, and all the rest of you will alreay
> know but please excuse me...
>
> It has been said a few times that the card for strong authentication
> is only needed on a PSTN line, and that ISDN connections provide
> strong authentication anyway...
>
> Two questions arise, apart from the obvious suggestion we all get
> ISDN2e at home:-
>
> - whatever magic is involved inthe ISDN authentication, why can't
> it be added to PSTN
> - how does the ISDN authentication know who is typing on the
> keyboard?
>
> Yours, puzzled of Exeter
>
>
>
>
> --- OffRoad 1.9r registered to Adrian Midgley
The PSTN dial up uses the SecurID card and can be done from anywhere.
The ISDN connection uses two levels of security, CLI (caller line identification and CHAPS, Challenge, Handshake Authentification
Protocol.
CLI firstly checks the ID of the calling line, the phone number it is coming from just as the boxes you can get at home do.
CHAPS then goes through a handshaking procedure occurs with an exchange of identification like fax machines do, (the number called
appears on your fax)which can involve an exchange of passwords. This is a standard protocol and could be made even more secure by a
dial back procedure. There is no reason why you could not use this with PSTN as long as you were calling from the same phone all
the time.
The ISDN connection is added to the dial up software on the server. Only if you have access to that network will you be able to get
into NHSnet. The code of connection makes it clear that you have to have increased vigilance in your practice to prevent
unauthorised access to your network.
I agree with the implied point that who is tapping the keys is the root of the security problem. Hopefully with proper security
policies within practices, the person on the end of the mouse is authorised to be there.
Dr Trefor Roscoe
Beighton Health Centre
Queens Road, Beighton,
SHEFFIELD
GP Tutor Informatics - N Trent
Member of the BHIA
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
|