view release on metacpan or  search on metacpan

Aut.pm  view on Meta::CPAN

=head2 Encryption and decryption of user data

A default feature that is provided by the Aut framework is the possibility
to encrypt and decrypt data with the ticket. If a user has a valid ticket,
he/she can encrypt and decrypt his/hers data. This makes it possible to
use this ticket system with applications that store data that has to be
private. E.g. a patient document system.

There's a catch in such systems. If the user looses his/hers password,
he/she won't be able to decrypt his/hers data. This poses a problem
for helpdesks. The Aut systems provides the following  backup for this 
situation.

=head3 The backup system for lost passwords

If a user looses his/hers password, an administrator would normally
provide the user with a new password. However, this would mean that
the users looses all his/hers encrypted data, because his/hers password
is connected to the encrypted data by means of encryption/decryption keys.
This section describes the solution that Aut uses to address this problem.

=over 1

=item *