|
|
Enterprise data privacy is also commonly referred to as Identity Management.
Identity Management is referred to as Authentication. It is basically a
set of rules and tools that are used in tandem to protect the enterprise’s network
from unauthorized users and to prevent the misuse of the network. Authentication
(from Greek αυθεντικός; real or genuine, from authentes; author) is the act of establishing
or confirming something (or someone) as authentic, that is, that claims made by
or about the thing are true. This might involve confirming the identity of a person
or assuring that a computer program is a trusted one using certain authentication
factors. An
authentication factor is a piece of information and process used to authenticate
or verify a person's identity for security purposes. Transactional authentication
generally refers to the Internet-based security method of securely identifying a
user through two or three factor authentication at a transaction level, rather than
at the traditional Session or Logon level.
Types of Factor Authentications:
1. Two Factor Authentication: Two-factor authentication is a security process
in which the user provides two means of identification, one of which is typically
a physical token, such as a card, and the other of which is typically something
memorized, such as a security code. In this context, the two factors involved are
sometimes spoken of as something you have and something you know. A common example
of two-factor authentication is a bank card: the card itself is the physical item
and the personal identification number (PIN) is the data that goes with it.
2.
Three Factor Authentication: is a security process in which the user
has to provide the following three means of identification:
• Automatic remediation process i.e fixing non-compliant nodes before allowing access.
• Something the user has (e.g., ID card, security token, software token)
• Something the user knows (e.g., a password, pass phrase, or personal identification
number (PIN))
• Something the user is or does (e.g., fingerprint or retinal pattern, DNA sequence,
signature or voice recognition, unique bio-electric signals, or any other biometric
identifier)
Tokens,
Biometrics, Phones,Smart
cards,
OTP Token are a few examples of factors that could be used
as SOMETHING THE USER HAS.
Advantages Of using 2/3 Factor Authentication:
1. Drastically reduce the incidence of onlineIdentity Thefts , phishing expeditions and other online frauds.
2. Ensures that you have a very strong authentication method in place.
3. Increases the confidence and trust levels of the users interacting with your
network.
4. Adheres to the
compliance rules of various
standards especially if you are in the financial domain.
5. Ensures that you have sufficient levels of security to thwart any attacks on
your network.
6. It allows you to provide secure remote access to your network.
|
|