Understanding Two Factor Authentication
Two-factor Authentication, also known as TFA or 2FA, is a two-step authentication process used to log into a network or network service.
Single factor authentication is what most of us use every day, which is typically just a password.
Related: Can You Remember all of Your Passwords?
TFA requires two of the following: something you know (password), something you have (a token/key fob with numbers that change or a response on a smart phone) or something you are (bio-metrics, eye scan, finger print, and maybe a DNA sample in the future).
If you work in an environment that is under regulatory compliance, such as the financial industry, medical, government, etc. you are or soon will be required to have, at minimum, your privileged account users logging into the network with TFA.
A privileged account user is a user with network administrative permission. Quanexus has recently partnered with DUO Security to provide TFA solutions.
Related: Creating a Security Conscience Team
DUO can work with a token device or a smartphone. When a user attempts to log into a system with their user ID and password, a message is sent to the user’s smartphone and waits for a response from the smartphone before letting the user complete the login process.
There are other configurations for DUO, but the Smartphone integration seems to be the most popular.
If you would like more information, contact us here or call 937.885.7272.
Follow us on Facebook, Twitter and LinkedIn and stay up to date on Hacks, Attacks & Cybersecurity by subscribing to our email list.