The following is external content provided as a free resource for blog readers.
ESET Secure Authentication validates each VPN and Outlook Web Access (OWA) login with a unique One-Time-Password (OTP) adding an important layer of security to your company's sensitive data.
Two-Factor Authentication is no longer optional but essential to complying with data privacy requirements from industry regulations such as PCI DSS, HIPAA, FFIEC Guidelines, Sarbanes-Oxley and NIST. Mitigate risky password practices. Request Free! |
Correct me if I am wrong, but this solution seems to be in band, which means it is still vulnerable to man in the middle attacks. I found a safe, usable (without consumer friction) out of band 2fa solution through my password manager, LastPass. They have an option to use a 2fa solution called Toopher, which has an option to automate authentication without having to bother the user every time they are trying to login into their accounts. It's the only 2fa solution I have found that does it right, and takes into consideration the user experience before anything. It's safe, extremely secure and easy to use. Couldn't ask for anything more!
ReplyDeleteThanks Meg! Please keep in mind this is intended to be a solution for commercial users, and not home users. For home users, LastPass with an out of band 2fa would be a great method!
Delete