Authentication System

Information about the whole service

Use procedure ・ Regulations

Manuals ・ Guidebooks

Reference materials

ECS-ID (for students, part-time lecturer, etc...)

The usage

SPS-ID (for Faculty and Staff)

The usage

Authentication IC Card, Facility Use Card

Support

Single Sign-on Service

The usage

Multi-Factor Authentication

The usage

client certification

Use procedure ・ Regulations

コンテンツ

  1. HOME
  2. Services
  3. Authentication System
  4. Multi-Factor Authentication

Multi-Factor Authentication

Multi-factor authentication is a method of authentication that uses password and other factors combined.

What is Multi-factor authentication ?

Recently a method of authentication that uses password and other factors combined is rapidly introduced. For example, online banks and social network services authenticate their clients more strictly, by using dedicated devices, smartphone apps or SMS.

This mechanism is named Multi-factor authentication.

Multi-factor authentication in Kyoto University

Multi-factor authentication introduced at Kyoto University is Two-factor authentication. It requires your ID and password as the first factor, and as the second factor requires One-time password.

TOTP (Time-based One-time Password)

We use TOTP (Time-based One-time Password) for One-time Password, it composes six numbers changing every 30 seconds. These six numbers are different depending on the user.

We use TOTP display applications to acquire TOTP. This is named "display application" however, in fact, this is a calculator that determines your TOTP referring to the time and your "secret". After installation and setting, you will use TOTP apps without data communication.

  • Applications for smartphone (Android, iPhone)

  • Plug-ins for web browser (Chrome, Firefox, Edge (based on Chromium)

We recommend to use TOTP as the standard Two-factor authentication.

Other methods

In addition to TOTP you can use:

  • Receive One-time password by email.

  • FIDO2 (the latest authentication method using Biometrics)

By setting them, you can select one of them as the second factor for login. We recommend it in case of login problems coming from your computer or smartphone trouble.

When Two-factor authentication is required?

  • Basically, you always need to input the second factor, whether you log in from on campus or outside.
  • However, we switch all services into Multi-factor authentication gradually, not at once. Thus, currently it may happen that you are not requested the second factor at the time of login.

Expiration period of the second factor

  • When you put a check in "Trust this browser" at the moment to login by Multi-factor authentication, you will omit inputting the second factor during seven days (this period may be changed). You cannot omit inputting the first factor, namely, username and password.

  • You need to input the second factor when you login with another browser, even on the same device. Authentication is performed based on a browser.
  • Do not put a check in "Trust this browser" at the browser that a person who is not you may use, like a shared device.

Details about settings

Please read the manuals "Multi-Factor Authentication User's Guide" on the IIMC top page, they describe the details of setting and usage.

When you have a problem to login because of trouble to input the second factor, please contact us and we will support you to resolve it.

https://sites.google.com/kyoto-u.ac.jp/mfa/

The usage

 

Copyright © Institute for Information Management and Communication, Kyoto University, all rights reserved.