Viewing posts tagged Two Factor Authentication
the-10-000-download-mark
Posted by: admin 16 years, 3 months ago
Sometime while I was away on vacation we crossed the 10,000 download mark on our Sourceforge site. Thanks to everyone!
the-keychain-issue
Posted by: admin 16 years, 3 months ago
I think awareness of the 'key chain' issue is increasing, which makes me happy. First, there was a post on ask.slashdot about carrying around multiple tokens and today, there was a post on the PingIdentity blog entitled Overcoming Keychain Issues with Strong Auth. He lists four possible solutions to the problem:1. Centralized Token Service - Local authentication for username/password and a centralized service for token validation.
blogdrums
Posted by: admin 16 years, 3 months ago
I have had a bad case of the blogdrums, plus we've been busy working on our 3.0 release. We have just opened to the public our 3.0 beta release in an RPM version. So if you want to play around with two-factor authentication and help us out, please download.
better-password-strength-just-one-factordeleteme
Posted by: admin 16 years, 3 months ago
Pete over at Spire Security points out the obvvious(which alluded me):
As far as I can tell, Bruce Schneier's current Wired column, MySpace Passwords Aren't So Dumb, is intended to be taken seriously. The article is supposed to be about how "good" passwords on MySpace are these days, and there isn't a hint of irony in his statement:He also points out that if you're not going to do two-factor authentication, then don't worry about long passwords. If any data is important enough or vulnerable enough to require a strong and therefore annoying password policy, use two-factor authentication."But seriously, passwords are getting better."I am at a loss to explain how he can come to this conclusion when every single one of the 34,000 passwords he analyzed were stolen through a phishing attack. What he should have said was: "This shows that a 1-character password (the shortest they harvested) is just as secure as a 32-character password (the longest they harvested)"
bob-blakely-and-radovan-semanek-on-the-end-of
Posted by: admin 16 years, 3 months ago
Bob Blakely and Radovan Semančík are blogging about two-factor authentication and the problems with passwords. Bob thinks we should get rid of passwords this decade. Radovan thinks that it may be harder than that.Recent Posts
- Blast-RADIUS attack
- The latest WiKID version includes an SBOM
- WiKID 6 is released!
- Log4j CVE-2021-44228
- Questions about 2FA for AD admins
Archive
2024
2022
- December (1)
2021
2019
2018
2017
2016
2015
2014
- December (2)
- November (3)
- October (3)
- September (5)
- August (4)
- July (5)
- June (5)
- May (2)
- April (2)
- March (2)
- February (3)
- January (1)
2013
2012
- December (1)
- November (1)
- October (5)
- September (1)
- August (1)
- June (2)
- May (2)
- April (1)
- March (2)
- February (3)
- January (1)
2011
2010
- December (2)
- November (3)
- October (3)
- September (4)
- August (1)
- July (1)
- June (3)
- May (3)
- April (1)
- March (1)
- February (6)
- January (3)
2009
- December (4)
- November (1)
- October (3)
- September (3)
- August (2)
- July (5)
- June (6)
- May (8)
- April (7)
- March (6)
- February (4)
- January (427)
2008
- December (1)
Categories
- PCI-DSS (2)
- Two-factor authentication (3)
Tags
- wireless-cellular-mobile-devices (7)
- Two-factor authentication (10)
- Wireless, cellular, mobile devices (6)
- NPS (1)
- Phishing and Fraud (111)
- Active Directory (1)
- pam-radius (3)
- privileged access (2)
- Cloud Security (10)
- Mutual Authentication (60)
- Web Application Authentication (1)
- Authentication Attacks (99)
- pci (50)
- Security and Economics (97)
- WiKID (133)
- pam (2)
- VPN (1)
- Installation (2)
- RADIUS Server (1)
- Open Source (64)
- Tutorial (2)
- Strong Authentication (35)
- Information Security (137)
- Transaction Authentication (13)
- Miscellaneous (100)
- Linux (2)
- transaction-authentication (6)
- Two Factor Authentication (254)