- Information about the whole service
- Types of ICcards
- Steps in issuing an IC card
- 【Limited on-Campus】Authentication system
- 【Limited on-Campus】Athentication IC Card
- ECS-ID(for students, part-time lecturer, etc...)
- 【Limited on-Campus】Facility Use Card
- 【Limited on-Campus】
- 【Limited on-Campus】ICカード読み取りソフト(FCFdumpソフト)
- 【Limited on-Campus】About the installation of the driver software of Kyoto University Authentication Infrastructure
- 【Limited on-Campus】Multi-Factor Authentication User's Guide
- ECS-ID (for students, part-time lecturer, etc...)
- Authentication IC Card, Facility Use Card
Multi-factor authentication is a method of authentication that uses password and other factors combined.
What is Multi-factor authentication ?
Recently a method of authentication that uses password and other factors combined is rapidly introduced. For example, online banks and social network services authenticate their clients more strictly, by using dedicated devices, smartphone apps or SMS.
This mechanism is named Multi-factor authentication.
Multi-factor authentication in Kyoto University
Multi-factor authentication introduced at Kyoto University is Two-factor authentication. It requires your ID and password as the first factor, and as the second factor requires One-time password.
TOTP (Time-based One-time Password)
We use TOTP (Time-based One-time Password) for One-time Password, it composes six numbers changing every 30 seconds. These six numbers are different depending on the user.
We use TOTP display applications to acquire TOTP. This is named "display application" however, in fact, this is a calculator that determines your TOTP referring to the time and your "secret". After installation and setting, you will use TOTP apps without data communication.
Applications for smartphone (Android, iPhone)
- Plug-ins for web browser (Chrome, Firefox, Edge (based on Chromium)
We recommend to use TOTP as the standard Two-factor authentication.
In addition to TOTP you can use:
Receive One-time password by email.
FIDO2 (the latest authentication method using Biometrics)
By setting them, you can select one of them as the second factor for login. We recommend it in case of login problems coming from your computer or smartphone trouble.
When Two-factor authentication is required?
- Basically, you always need to input the second factor, whether you log in from on campus or outside.
However, we switch all services into Multi-factor authentication gradually, not at once. Thus, currently it may happen that you are not requested the second factor at the time of login.
Expiration period of the second factor
When you put a check in "Trust this browser" at the moment to login by Multi-factor authentication, you will omit inputting the second factor during seven days (this period may be changed). You cannot omit inputting the first factor, namely, username and password.
- You need to input the second factor when you login with another browser, even on the same device. Authentication is performed based on a browser.
- Do not put a check in "Trust this browser" at the browser that a person who is not you may use, like a shared device.
Details about settings
Please read the manuals "Multi-Factor Authentication User's Guide" on the IIMC top page, they describe the details of setting and usage.
When you have a problem to login because of trouble to input the second factor, please contact us and we will support you to resolve it.