A Virtual Private Network (VPNs) to allows remote users to access a company’s computer systems. All kinds of users may use the VPN, including employees, independent contractors, vendors, and customers.
Naturally, security is crucial to protect the VPN. A company must decide on how the users can access the VPN in a relatively easy manner while still ensuring the integrity of the VPN.
Some systems allow entry simply by entering a user name and password. To reduce the risk of security breaches, experts recommend replacing login and password combinations with stronger methods of proving identity.
Multi-factor authentication requires using more than one factor to prove identity before online access is granted to the VPN. Multiple factors used include
Something you know (such as a PIN or password);
Something you have (such as a smart card, digital ID, or One Time Password generator);
Something you are (a biometric factor such as fingerprint or voiceprint).
Requiring login credentials from at least 2 of the groups is a good first step in securing a VPN. Deciding which factors to require depends on the type of users that are accessing the system and the level of security. For example, logins to personal or financial information calls for a higher degree of security than accessing marketing or sales materials.
Friday, September 7, 2007
Subscribe to:
Post Comments (Atom)
0 comments:
Post a Comment