Token is an elecronic device. You enter a PIN and it returns you some digits
which are your password.
I use ActiveCard, below is some info from their site:
Key Advantages
Increased network protection and transaction integrity:
Before a one-time-use password is generated, ActivCard two-factor
authentication requires the user to have the token and know the PIN.
Unlike static passwords, dynamic passwords cannot be reused or guessed.
Digital signing of transactions certifies data integrity and validates
user identity.
Streamlined Administration and Authentication:
Deployed with ActivPack AAA services, authorized users securely
authenticate to VPN and remote access servers, Web-based applications, and
other network services.
ActivCard Tokens reduce the costs associated with static password
maintenance and related security policy enforcement.
Flexible deployment for large numbers of users:
With ActivPack, administrators can effectively manage token
distribution, initialize tokens, and define user authorization and access
rights.
The same back-end systems that administer ActivCard Tokens also support
ActivCard GoldTM smart card clients-delivering a clear bridge and migration
path to consolidated PKI, digital signature, and biometric solutions.
and found another description:
http://www.sunny.ch/downloadfiles/activcard.pdf
Best regards
Marcin
----- Original Message -----
From: "Marc Elsen" <marc.elsen@imec.be>
To: "Marcin - ONET" <marcinwasilewski@poczta.onet.pl>
Cc: <squid-users@squid-cache.org>
Sent: Wednesday, November 20, 2002 3:19 PM
Subject: Re: [squid-users] Cannot log into only one site.
>
>
> Marcin - ONET wrote:
> >
> > Hello,
> >
> > I'm using SQUID 2.5 STABLE, Squid has a parent (Netscape) and everything
is
> > working perfect. I can access all web sites with login neccessary (i.e.
my
> > bank account and so on). There is only one exception:
> > One company give me access to it's site by using token and the problem
> > arises here.
>
> What do you mean by 'token' ?
> Which protocol/mechanism is the token based upon ?
>
> M.
>
>
> > When I'm using Squid without a parent logon process is ok, but when I
try to
> > it with my default configuration (with parent) the logon windows loops
(I
> > enter my login and password, click "log" and the logon screen loop).
> > I have "never_direct alow" ACL which send all the packets through PARENT
> > They told me that when I try to log on into their server is sending me
site
> > with "HTTP/1.1 500" (header of this site should provide me information
> > neccessary for correct authorisation) and untill I will use
"never_direct
> > alow" ACL it will not work.
> > Why? Can someone tell me?
> > Best regards
> > Marcin
>
> --
>
> 'Time is a consequence of Matter thus
> General Relativity is a direct consequence of QM
> (M.E. Mar 2002)
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:11:29 MST