Page d'accueil

Design and implementation of a user authentication system

The purpose of this bachelor project is to provide Bity with a practical prototype to learn about the challenges and open-source solutions available to implement multi-factor authentication for its customers using credentials and security tokens. The project explores commonly used authentication factors, standards for user authentication and open-source projects implementing these standards. Then, a set of user authentication strategies addressing Bity requirements is proposed along with detailed flows for user authentication, and lost tokens, leading to the exposition of possible solutions implementing these flows, one of which is selected for the prototype. Finally, a detailed account of the prototype is presented, along with a threat analysis based on the STRIDE framework along with practical considerations for a production implementation.