...
Primary authentication method is via member institution authentication systems using Shibboleth.
IP address / range authorization (e.g. for restricting access to specific collections to "on campus") is available.
Default DSpace authentication is available. (where DSpace manages all accounts, passwords and permissions)
Encryption
All calls to hosted DSpace are encrypted using Transport Layer Security protocols (HTTPS). TDL requires HTTPS for all sites, and does not allow site data to be sent via plain HTTP.