June 09, 2017//Ellen NeveuxLast Updated: November 18, 2020
Justin Strackany is Chief Customer Officer for SecureLink and a recognized leader in third-party remote access policy and implementation.
This spring, Instagram folded two-factor authentication into its processes to add an additional layer of security – to prevent breaches. If you’re still authenticating remote users with a single password, it’s time to make a change. There’s just too much at stake. With that in mind, here are four things to keep in mind when considering a two-factor authentication policy for your organization, and one thing you should probably avoid.
And now, one thing to avoid:
Beware the reset password
It’s easy to confuse multi-layer authentication with multi-factor. Multi-layer consists of two layers of the same type of mechanism, such as a password and secret question or a mobile device and key fob. Multi-factor contains at least one of each type, literally something you have and something you know. If you are authenticating to a website, it’s easy to accidentally remove one of your factors. If a user can reset their password and simply have it emailed to them, then they suddenly need to know a single email and password to be able to get access to your system. All multi-factor authentication processes need a provision if one of the factors is lost or forgotten. For example, you could have the user answer a series of secret questions and then receive an authorization key on their mobile device before they are able to reset their passwords.
Get a live demo to see powerful secure remote access software in action.
Our sole focus is secure third-party remote access. For highly regulated enterprise organizations, SecureLink Enterprise has pioneered a secure remote access platform. SecureLink for enterprise allows an organization to identify, control, and audit third-party vendors. For vendors, SecureLink is the gold standard remote access support platform because it is easy, efficient, and ensures compliance and reduces liability when supporting customers.