Authentication
Corellium offers three key authentication methods to ensure that only authorized users can access the system:
- Username and password
- Two-factor authentication
- Single sign-on
Username and Password
The default authentication method is username and password, called "local authentication". This method available on all instances and can be used by all users unless the Domain Administrator has disabled it.
Passwords have default minimum standards, such as a minimum length of 8 characters. They are hashed and salted using the argon2 algorithm. This is a one-way hash function, which means that it is not possible to recover the original password from the hash. This is an industry standard for password hashing.
Two-Factor Authentication
Two-factor authentication (2FA) is an additional layer of security that requires users to provide two different types of information to verify their identity. Corellium specifically support TOTP (Time-based One-Time Password) authentication, which is a form of 2FA that uses a time-based token to generate a one-time password.
You can read more about enabling 2FA in the Multi-Factor Authentication section.
Single Sign-On
Single sign-on (SSO) is an authentication method that allows users to log in to multiple applications using a single set of credentials. Corellium supports SSO using a few different protocols.
You can read more about enabling SSO in the Single Sign-On section.