Ever feel like a deer-in-headlights? This is Preventing Deer In Headlights. (PDIH)

PDIH TOPIC:  I am trying all the factors. How is it working for you?

Multifactor authentication is a pain in my butt.

No really, I struggle with the implementations. Everyone I talk to seems to have a great authentication tool that only works for that 80% of their enterprise. As we become more web-enabled everybody thinks that their cloud solution will support my enterprise.

The top 2 my list currently are Yubikey & google authenticator.

Today I want to hear from you. What have you been using and how is it working?

yubikey: https://support.yubico.com/support/solutions/articles/15000006418-using-your-yubikey-with-google

 

Solution or STEPS

  1. Research different authentication databases that you must satisfy
  2. Collect and organize those assets Using classification or risk assessment
  3. Communicate with the user population to identify their tolerance of Have or Know Technologies
  4. Build a long-term authentication consolidation plan

Impact on security?

General impact: more authentication defense-in-depth gives us a control to limit weaknesses and vulnerabilities. CWE has a Master category: Authenticate Actors – (1010). If you go into CVE You get a list of 13,000 Possible Weaknesses. That is more than 10% of the total weakness is listed. So was factors of authentication go up, Risk goes down or at least our ability to detect increases.

This is what we will talk about on Thursday. Come be a part of cybersecurity. Don’t be a deer-in-headlights.

Can’t make it?

If you are a past student, you will have access to the recordings. Links

CPEs – Yesssss!

Most CPE requirements have both a validation step and an audit-able requirement. We do both for our past students. Free. You must login. Use this link ONLY if you are a past student who has been given audit-able access. https://www.vmlt.com/mod/url/view.php?id=14166

I hope you attend – it will be fun.

CommercialCISSP starts next Saturday Nov 17, 2018 ; please tell your friends! To see other start dates you can go to: https://www.expandingsecurity.com/calendar/

Categories: Learning