Uncategorized
User Permissions and Two Factor Authentication
A robust security infrastructure is based on user permissions and two-factor authentication. They reduce the chance of accidental or malicious insider activity, reduce the impact of data breaches and help ensure compliance with regulations.
Two factor authentication (2FA) is a process in which a user has to enter a credential from two categories to be able to log into their account. This could include something the user knows (password PIN code, password, security question) or something they already have (one-time verification passcode that is sent to their phone or an authenticator app) or something they are (fingerprint or face, retinal scan).
2FA is often a subset to Multi-Factor Authentication, which has more than two factors. MFA is often a requirement in certain industries, for example healthcare (because of the strict HIPAA regulations) as well as e-commerce and banking. The COVID-19 virus pandemic has also raised the importance of security for businesses that require two-factor authentication.
Enterprises are living organisms and their security infrastructures are constantly evolving. Users are changing roles and hardware capabilities are evolving and complex systems are now accessible to users. It is essential to periodically review your two-factor authentication strategy at regular intervals to make sure that it can keep up with these changes. Adaptive authentication is one way to accomplish this. It’s a kind of contextual authentication that activates policies based on date, time and location at which a login request is processed. Duo offers a central administrator dashboard that lets you easily set and monitor these types of policies.
