Sections

Personal tools

You are here: Home → wikidblog → Open source momentum and spending during the recession

Recent entries: How to thwart laptop facial recognition systems admin Dec 08, 2008; Google research on Strong Authentication admin Dec 05, 2008; Checkfree Breach admin Dec 04, 2008; The Express Scripts Bounty admin Nov 14, 2008; Citrix on the need for two-factor authentication admin Nov 12, 2008

Recent comments: Re:TACACS+ - The good and the bad Nick Dec 26, 2008; Re:TACACS+ - The good and the bad Anonymous User Dec 25, 2008; Re:Student interest in WiKID Anonymous User Dec 14, 2008; Re:Running the WiKID Two-factor authentication server on Ubuntu remix_tj Nov 16, 2008; Re:Embedding WiKID two-factor authentication in your Web application admin Nov 11, 2008

2008/10/22

Open source momentum and spending during the recession

Hat Tip: Slashdot, From ComputerWorld:

Red Hat president and CEO Jim Whitehurst expects the enterprise open source software business to emerge from the economic crisis stronger than the proprietary market.

I could not agree more. But I don't think it is about open source vs proprietary. It is about cost savings and squeezing vendors more to save internal staff. We're seeing more and more large companies listen to the open source evangelists inside their companies about saving money by switching from expensive hardware tokens to a less-expensive open source two-factor authentication solution. In the end, though, people will think "Oh, we saved money going with an open source solution - let's look for other areas where we can that again."

Category(s): Security and Economics; Open Source

Voting: Hackable or Error prone? You decide!
¦
Main
¦
Congrats to OBS!

MTM vulnerable

Posted by Kris Puri at Oct 31, 2008 11:49 PM

I think the WiKID solution is susceptible to MTM attacks. Since you don't use a hardware token with a number generator synced to the server I see this is inferior to the more expensive solution.

I may be reading the description wrong though.

Re:Open source momentum and spending during the recession

Posted by admin at Nov 01, 2008 09:20 AM

Kris:

First, there is no MITM attack that WiKID is vulnerable to which a hardware token is not also vulnerable. Second, the PC token includes https mutual authentication which prevents network-based MITM attacks for https and SSL-based (browser-based) VPNs. So, in fact, WiKID provides more MITM protection than a hardware token.

The PC token also has anti-keystroke logger functionality. Further, the latest Enterprise version allows you to have "Wireless Only" domains, so users must one of the J2ME, Blackberry or other smart-phone tokens.

HTH,

Nick

Add comment

You can add a comment by filling out the form below. Plain text formatting. Comments and Trackbacks are moderated.

Author (Required)

EMail (Required)

URL

Title (Required)

Comment (Required)

Remember your information on cookie?

Verification Code

This helps us prevent automated spamming.