The WiKID Blog, musings on two-factor authentication, information security and some other stuff.
How to Increase the Likelihood that your Security Risk Recommendations are accepted
Posted by: admin 7 years, 7 months ago
Via @adamshostack came this post by @lennyzeltser Why Business Managers Ignore IT Security Risk Recommendations.
Avoiding the creep factor in authentication
Posted by: admin 7 years, 7 months ago
I have recently seen a number of WiKID competitors announced in the two-factor authentication market that seek to reduce the need for user interaction.
Defense at every stage
Posted by: admin 7 years, 8 months ago
Another tweet struck me for it's common sense and truth:
VPN services leak info via IPv6
Posted by: admin 7 years, 8 months ago
Earlier this year, we released a set of packer scripts that allow you to easily build a two-factor ready openvpn virtual appliance. We have updated the scripts to turn off IPv6 because it seems that VPN services using Openvpn can leak information via IPv6. (This was surely the easy fix. There may be better ones.)
Bridging Gunnar Gaps to create virtual circles
Posted by: admin 7 years, 9 months ago
If you haven't read Gunnar Peterson's post Security, Fast and Slow, please do so now. It is about how Security's natural tendencies grate the natural tendencies of Development. Security needs to adapt to make it easier for Development to make the right decisions to bridges such gaps. I now call these "Gunnar Gaps".
Recent Posts
- WiKID 6 is released!
- Log4j CVE-2021-44228
- Questions about 2FA for AD admins
- WiKID Android tokens had their data deleted over the weekend by Google Chrome bug
- Scalability improvements in version 5.0 of the WiKID Strong Authentication server
Archive
2022
- December (1)
2021
2019
2018
2017
2016
2015
2014
- December (2)
- November (3)
- October (3)
- September (5)
- August (4)
- July (5)
- June (5)
- May (2)
- April (2)
- March (2)
- February (3)
- January (1)
2013
2012
- December (1)
- November (1)
- October (5)
- September (1)
- August (1)
- June (2)
- May (2)
- April (1)
- March (2)
- February (3)
- January (1)
2011
2010
- December (2)
- November (3)
- October (3)
- September (4)
- August (1)
- July (1)
- June (3)
- May (3)
- April (1)
- March (1)
- February (6)
- January (3)
2009
- December (4)
- November (1)
- October (3)
- September (3)
- August (2)
- July (5)
- June (6)
- May (8)
- April (7)
- March (6)
- February (4)
- January (427)
2008
- December (1)
Categories
- PCI-DSS (2)
- Two-factor authentication (3)
Tags
- wireless-cellular-mobile-devices (7)
- Two-factor authentication (10)
- Wireless, cellular, mobile devices (6)
- NPS (1)
- Phishing and Fraud (111)
- Active Directory (1)
- pam-radius (3)
- privileged access (2)
- Cloud Security (10)
- Mutual Authentication (60)
- Web Application Authentication (1)
- Authentication Attacks (99)
- pci (50)
- Security and Economics (97)
- WiKID (133)
- pam (2)
- VPN (1)
- Installation (2)
- RADIUS Server (1)
- Open Source (64)
- Tutorial (2)
- Strong Authentication (35)
- Information Security (137)
- Transaction Authentication (13)
- Miscellaneous (100)
- Linux (2)
- transaction-authentication (6)
- Two Factor Authentication (254)