2 options
Multifactor authentication for e-commerce / William Newhouse [and five others]
Connect to full text Available online
View online- Format:
- Book
- Government document
- Author/Creator:
- Newhouse, William, author.
- Series:
- NIST special publication ; 1800-17.
- NIST special publication ; 1800-17
- Language:
- English
- Subjects (All):
- Electronic commerce.
- Computer networks--Security measures.
- Computer networks.
- Genre:
- technical reports.
- Technical reports
- Technical reports.
- Physical Description:
- 1 online resource (249 pages) : color illustrations
- Other Title:
- Subtitle from cover: Risk-based, FIDO universal second factor implementations for purchasers
- Place of Publication:
- Gaithersburg, MD : National Institute of Standards and Technology, U.S. Department of Commerce, National Cybersecurity Center of Excellence, 2019.
- Summary:
- As retailers in the United States have adopted chip-and-signature and chip-and-PIN (personal identification number) point-of-sale (POS) security measures, there have been increases in fraudulent online card-not-present (CNP) electronic commerce (e-commerce) transactions. The risk of increased fraudulent online shopping became more widely known following the adoption of chip-and-PIN technology that increased security at the POS in Europe. The NCCoE at NIST built a laboratory environment to explore methods to implement multifactor authentication (MFA) for online retail environments for the consumer and the e-commerce platform administrator. The NCCoE also implemented logging and reporting to display authentication-related system activity. This NIST Cybersecurity Practice Guide demonstrates to online retailers that it is possible to implement open standards-based technologies to enable Universal Second Factor (U2F) authentication at the time of purchase when risk thresholds are exceeded. The example implementations outlined in this guide encourage online retailers to adopt effective MFA implementations by using standard components and custom applications that are composed of open- source and commercially available components.
- Contents:
- volume A. Executive summary
- volume B. Approach, architecture, and security characteristics
- volume C. How-to guides.
- Notes:
- "July 2019."
- Includes bibliographical references.
- Online resource; title from PDF title page (viewed July 29, 2019).
- OCLC:
- 1117448301
The Penn Libraries is committed to describing library materials using current, accurate, and responsible language. If you discover outdated or inaccurate language, please fill out this feedback form to report it and suggest alternative language.