Irregular Expressions

Jan 30 2013   1:31AM GMT

2013 A Good Year For Two Factor Auth

Dan O'Connor Dan O'Connor Profile: Dan O'Connor

If you could do something this year that I think would have the most impact for your users especially if you are a company that offers services requiring web authentication. Two factor authentication will have a dramatic effect on your posture. I am not saying that it is new, but I think it is coming to the point that it should be the norm. If it is some sort of device with a rolling number, token or even some sort of one time pad.

Something this size I think is an excellent choice. Just have it on your key chain, pop it in the USB port like a car key and be logged in to your web services. Something you know, your password and something you have, your usb key. There is still multiple ways that you can attack a system like this to do some bad, like piggy backing on the already authenticated session to do what you need like transferring money out of an account. This still would make standard key loggers pretty much useless in stealing data alone.

 Comment on this Post

There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

Share this item with your network: