The password as we know it, is dead. It is no longer enough to trust a string of characters to safeguard your invaluable business data. Security measures are rapidly developing to stay one step ahead of attackers and to better protect your online accounts. Over the last few months, Milnsbridge has rolled out SentinelOne Next-Generation Anti-Virus and Password Management to our customers. Next, we will be introducing Duo Security Multi-Factor Authentication.
Below is a FAQ on Duo and on Multi-Factor Authentication in general.
What is Duo Security?
Duo authentication is a cloud-based multi-factor authentication provider used to generate passcodes and receive push notifications. It is part of our new security plans which sees us configure Duo Security for our customers with enhanced security plans.
What is Multi-Factor Authentication?
Multi-factor authentication adds extra layers of security to your online accounts. After entering your password, your authenticator app will confirm your identity by sending a push notification to your device. The idea of authentication prevents anyone but you from logging into your accounts, even if they have your password.
- The user logs in to their account with their user name and password.
- If the credentials are correct, the user becomes eligible for the second factor.
- The authentication server sends a unique code to the userโs second-factor device (mobile, smart watch, hardware token, etc.)
- The user confirms their identity by approving the authentication from their second-factor device.
Why Do I Need Multi-Factor Authentication?
Using passwords as the only line of defence is no longer an option. As data breaches become more and more commonplace, it is now becoming easier for attackers to compromise hundreds of thousands of accounts. Multi-factor authentication is now an essential aspect of web security because it counteracts the risks associated with compromised passwords and accounts.
SMS-based two-factor authentication is heavily targeted by attackers. For example, the Modlishka phishing tool can intercept SMS-based two-factor authentication tokens; essentially allowing attackers to bypass authentication when itโs through text confirmation. The strongest form of authentication is mobile push-based (through the Duo app) and universal security keys, however that is the more complex of the two.
Businesses will need to rely on a dynamic approach to security, built from a variety of tools and practices. Purely relying on the strength of a password makes you more susceptible to an attack. Milnsbridgeโs managed security as a service (SaaS) relies on a host of tools and methods for comprehensive protection for your valuable business data.
To speak to Milnsbridge about the Duo Mobile App and our other managed services, call us today on our phone number 1300 300 293.