« Previous 1 2 3 4 5

Secure remote access and web applications with two-factor authentication

Ticket Control

Conclusions

The use of strong authentication solutions is highly advisable, given the large number of successful hacker attacks on access credentials. Prominent victims of the recent past are Sony's PlayStation Network, Yahoo, and LinkedIn. The cost of implementing and operating a two-factor authentication solution is relatively low, considering the high damage potential of a successful hack against user data. Remote access connections and smaller web applications can be hardened for free with Google Authenticator and Mydigipass.com.

Infos

  1. QTrust 2go Smart: http://www.qgroup.de/index.php?setLang=2
  2. PCI DSS: https://www.pcisecuritystandards.org/security_standards/
  3. RSA Security: http://www.emc.com/domains/rsa/index.htm
  4. Safenet: http://www.safenet-inc.com/
  5. SMS Passcode: http://www.smspasscode.com
  6. Zyxel: http://www.zyxel.com/homepage.shtml
  7. OPIE: http://en.wikipedia.org/wiki/OPIE_Authentication_System
  8. OATH: http://www.openauthentication.org
  9. Openkubus: http://code.google.com/p/openkubus/ (in German)
  10. LSE LinOTP: http://lsexperts.de/linotp-strong-user-authentication.html
  11. Mobile-OTP: http://motp.sourceforge.net
  12. TOTP: http://tools.ietf.org/html/rfc6238
  13. HOTP: http://tools.ietf.org/html/rfc4226
  14. Logging in with substitute codes: http://support.google.com/accounts/bin/answer.py?hl=en&answer=180744
  15. FreeBSD one-time passwords: http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/one-time-passwords.html
  16. Android Opiekey: http://android.f00d.nl/opiekey
  17. Google Authenticator: http://code.google.com/p/google-authenticator
  18. GA Download: https://code.google.com/p/google-authenticator/downloads/list
  19. Security key by PayPal: https://www.paypal.com/us/cgi-bin/webscr?cmd=xpt/Marketing_CommandDriven/securitycenter/PayPalSecurityKey-outside
  20. Mydigipass API: https://developer.mydigipass.com/api
  21. Demo token: http://demotoken.vasco.com/go3.html
  22. Vasco: http://www.vasco.com
  23. Mydigipass: https://www.mydigipass.com
  24. Drupal Mydigipass module: http://drupal.org/project/mydigipass
  25. Mydigipass plugins: https://github.com/vasco-data-security

The Author

Thomas Zeller is an IT consultant and has been involved with IT security and open source for 15 years. He is the author and co-author of the books OpenVPN kompakt and Mindmapping mit FreeMind (both in German). In real life, he is the managing director of a medium-sized IT system integrator, where he is also responsible for the IT security division.

« Previous 1 2 3 4 5

Buy ADMIN Magazine

SINGLE ISSUES
Print Issues
Digital Issues
 
SUBSCRIPTIONS
Print Subs
Digisubs
 
TABLET & SMARTPHONE APPS
Get it on Google Play

US / Canada

Get it on Google Play

UK / Australia

Related content

comments powered by Disqus