Quantcast

Two-factor authentication

classic Classic list List threaded Threaded
3 messages Options
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Two-factor authentication

Dave Bruhn
Hey, everyone,

So now that NIST is deprecating the use of SMS as a valid means of 2-Factor Auth, we're exploring new options for 2FA.  Does anyone have a particular solution they like?

We've been using Duo for some of our other systems, but nothing that is web-based.  Duo does have a solution for websites: https://duo.com/docs/duoweb

Thanks,
Dave
---
Dave Bruhn
Senior Systems Analyst
North Carolina Hospital Association
PO Box 4449
Cary, NC 27519-4449
919-677-4145 (office)
[hidden email]
http://www.ncha.org


#############################################################

This message is sent to you because you are subscribed to
  the mailing list Lasso [hidden email]
Official list archives available at http://www.lassotalk.com
To unsubscribe, E-mail to: <[hidden email]>
Send administrative queries to  <[hidden email]>
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Two-factor authentication

Bil Corry-3
You might look to support FIDO:

https://fidoalliance.org/

That gives you access to 200 different solutions.

Here's an article about it:

http://www.cio.com/article/3094775/security/killing-the-password-fido-says-long-journey-will-be-worth-it.html

Here's one solution:

https://www.yubico.com/about/background/fido/


- Bil


On Tue, Jul 26, 2016 at 10:03 AM, Dave Bruhn <[hidden email]> wrote:

> Hey, everyone,
>
> So now that NIST is deprecating the use of SMS as a valid means of
> 2-Factor Auth, we're exploring new options for 2FA.  Does anyone have a
> particular solution they like?
>
> We've been using Duo for some of our other systems, but nothing that is
> web-based.  Duo does have a solution for websites:
> https://duo.com/docs/duoweb
>
> Thanks,
> Dave
> ---
> Dave Bruhn
> Senior Systems Analyst
> North Carolina Hospital Association
> PO Box 4449
> Cary, NC 27519-4449
> 919-677-4145 (office)
> [hidden email]
> http://www.ncha.org
>
>
> #############################################################
>
> This message is sent to you because you are subscribed to
>   the mailing list Lasso [hidden email]
> Official list archives available at http://www.lassotalk.com
> To unsubscribe, E-mail to: <[hidden email]>
> Send administrative queries to  <[hidden email]>
>

#############################################################

This message is sent to you because you are subscribed to
  the mailing list Lasso [hidden email]
Official list archives available at http://www.lassotalk.com
To unsubscribe, E-mail to: <[hidden email]>
Send administrative queries to  <[hidden email]>
Reply | Threaded
Open this post in threaded view
|  
Report Content as Inappropriate

Re: Two-factor authentication

Rick Draper-2
Yubikey is very cool

Very best regards

Rick

On 27 Jul 2016, at 6:25 AM, Bil Corry <[hidden email]> wrote:

You might look to support FIDO:

https://fidoalliance.org/

That gives you access to 200 different solutions.

Here's an article about it:

http://www.cio.com/article/3094775/security/killing-the-password-fido-says-long-journey-will-be-worth-it.html

Here's one solution:

https://www.yubico.com/about/background/fido/


- Bil


> On Tue, Jul 26, 2016 at 10:03 AM, Dave Bruhn <[hidden email]> wrote:
>
> Hey, everyone,
>
> So now that NIST is deprecating the use of SMS as a valid means of
> 2-Factor Auth, we're exploring new options for 2FA.  Does anyone have a
> particular solution they like?
>
> We've been using Duo for some of our other systems, but nothing that is
> web-based.  Duo does have a solution for websites:
> https://duo.com/docs/duoweb
>
> Thanks,
> Dave
> ---
> Dave Bruhn
> Senior Systems Analyst
> North Carolina Hospital Association
> PO Box 4449
> Cary, NC 27519-4449
> 919-677-4145 (office)
> [hidden email]
> http://www.ncha.org
>
>
> #############################################################
>
> This message is sent to you because you are subscribed to
>  the mailing list Lasso [hidden email]
> Official list archives available at http://www.lassotalk.com
> To unsubscribe, E-mail to: <[hidden email]>
> Send administrative queries to  <[hidden email]>

#############################################################

This message is sent to you because you are subscribed to
 the mailing list Lasso [hidden email]
Official list archives available at http://www.lassotalk.com
To unsubscribe, E-mail to: <[hidden email]>
Send administrative queries to  <[hidden email]>




#############################################################

This message is sent to you because you are subscribed to
  the mailing list Lasso [hidden email]
Official list archives available at http://www.lassotalk.com
To unsubscribe, E-mail to: <[hidden email]>
Send administrative queries to  <[hidden email]>
Loading...