Maintaining the user’s permissions and two-factor authentication is key to protecting from new cyber threats. Cybercriminals always stay ahead of the curve in an ever evolving digital landscape. To increase security, organizations should adopt centralized solutions to authentication and identification of users (IAM). These can be combined with improved user education.
Typically, 2FA is implemented by the requirement that users utilize an authenticator application on their personal devices. This ensures that only their device is used to sign in to an account with a HubSpot account, which reduces the chance of theft or lost credentials.
Duo Security, for example, an example of a 2FA system that was acquired by Cisco in 2018, provides mobile device support to its customers. The platform of the company uses FIDO and Web Authentication API (WebAuthn) standards to allow mobile device authentication by tapping into built-in capabilities in iOS, Android and Windows phones. This is a simple way for users of mobile devices to verify their identity without relying on IT professionals to update apps or alter settings. It can also prevent them from accidentally bypassing the security measures.
Other options to implement 2FA is to make sure that it be enabled in specific geographic locations or use network data to confirm the user’s location, and prevent authentication attempts from suspect networks like Tor, VPNs, and proxies. These kinds of conditional policies can be set and enforced in a variety of ways through the administrator dashboard of an IAM solution.
It is also crucial to realize that installing and deploying 2FA will require some time. To help speed up the process, it’s best to choose an IAM solution that allows users to self-remediate by disabling 2FA if their authenticator application is not working.
Vélemény, hozzászólás?