Strong Authentication Architecture OTP-OATH VPN SSL

Abstract

Complex distributed networks have made remote access authentication a significant part of network architecture in order to deliver sensitive data with the appropriate protection over the public internet to the authorized parties. Authentication is one of the important services since it affects the confidentiality and integrity of data. The classic authentication mechanism based on the username/password combination is no longer enough in the time of fast and strong crack software. The solution is to add an extra layer of authentication factors. In this project, our objective is to design and implement a strong authentication architecture by binding two strategies, the open authentication OATH one-time password mechanism, and the VPN SSL technology. For the OATH-OTP, we chose to develop an OATH TOTP applications, and we set up a VPN SSL tunnel using the ASA firewall. As a result, we achieve our purpose, tho the project could not be realized in a real network, we implement it using a simulation tool. Keywords— OTP, OATH, HOTP, TOTP, ASA , VPN SSL, 2FA, QRcode, Strong authentication.