Re: Access from publisher?

Subject: Re: Access from publisher?
David Goodman (dgoodman@Princeton.EDU)
Date: Wed, 01 Sep 1999 12:01:52 -0400

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Message-Id: <37CD4C17.29009045@princeton.edu>
Date: Wed, 01 Sep 1999 12:01:52 -0400
From: David Goodman <dgoodman@Princeton.EDU>
To: arl-ejournal@arl.org
Subject: Re: Access from publisher?
References: <4.2.0.58.19990831134125.00a19470@blitzen.dartmouth.edu>

On Tue, 31 Aug 1999, William Garrity <william.garrity@dartmouth.edu> wrote:
>
> Dartmouth does not favor IP-controlled access over passwords.
>
> I've been lurking in this discussion but have to jump in and opine
> that we need to do better than IP-controlled access, if for no other
> reason than that it is problematic for off-site users. (At Dartmouth,
> many members of our academic medical center community are off-site;
> various users across the whole College connect to Dartmouth via
> various ISPs.)
>
> We have implemented a solution -- Kerberos -- that in the ideal
> instances (which are many), gives single sign-on authentication
> and authorization for a variety of services (e.g., email) and
> resources (e.g., information resources from the library). Users
> are authenticated against the College's name directories and then
> authorized for access as appropriate -- one sign-on can credentialize
> the user for a variety of services and resources.
>
> See http://www.dartmouth.edu/~kerberos/; see also
> http://web.mit.edu/kerberos/www/ and
> http://www.contrib.andrew.cmu.edu/~shadow/kerberos.html. There
> is also a good article in Scientific American -- Author: Schiller,
> Jeffrey I. Title: Secure distributed computing. Augmented Title:
> noting MIT Athena project and Kerberos authentication system Source:
> Scientific American v. 271 (Nov. '94) p. 72-6
>
> Statements that usernames and passwords aren't favored versus
> IP-controlled access... well, it depends. With the right tools,
> you can make one sign-on persist for multiple purposes.

Bill, could you comment on the relative advantages and disadvantages of
using Keberos rather than a proxy server?

-- 
David Goodman 
Biology Librarian, and
Co-Chair, Electronic Journals Task Force
Princeton University Library 
dgoodman@princeton.edu         http://www.princeton.edu/~biolib/
phone: 609-258-3235            fax: 609-258-2627

This archive was generated by hypermail 2a16 : Mon Dec 20 1999 - 18:02:16 EST