Testimonials
“I cannot thank you enough for coming to the office last Sunday on such short notice. I know how inconvenient that must have been for you, but your timely appearance paid huge dividends. We are greatly in your debt! Thank you” J. Windsor
|
|
|
|
Webspeedway Increases Server Security |
|
Webspeedway has recently made a sizeable investment in our authentication processes to protect our customers from outside threats at a higher level. We have invested in a two-factor authentication process for all of our engineers to access your systems. Due to the investment many IT service providers do not want to make efforts needed for this security function. We have made the decision to take this for our internal auditing purposes and to protect our customers.
When you think of all that happens online and you consider all that goes on in the ‘networked’ world, you can start to appreciate the tremendous need for strong security measures to protect online assets, data and communications.
Authentication is the cornerstone of any vigilant network security solution. The authentication method used to protect the vast majority, over 90%, of networks is based on user names and passwords. This practice is a 50 year-old solution designed when there were no networks, no Internet, in short, a simplistic solution compared to current technologies.
Passwords suffer from a number of weaknesses that make them an ineffective security measure for your network - they are easy to steal, easy to hack and hard to remember. The result is both reduced network security and increased help-desk costs for resetting passwords.
Two-Factor Authentication – One-Time Passwords
Two-Factor Authentication (2FA) is directly analogous to the way one ‘authenticates’ to a Banking Machine – you use something only you have (your unique bank card) and something only you know (your secret PIN) to identify yourself to the system.
It is very similar in the networked world, the ‘something only you have’ is a password-generating authenticator or token. A small device carried by the end user. The ‘something only you know’ is, again, a secret PIN.
Your token is your key to the network – it generates a new password every time you logon. Your PIN validates that you are the rightful owner of the token. You can choose from several varieties of tokens all of which do the same thing, they generate a new secure, random ‘One-Time Password’ for every logon. Anyone key-logging or shoulder surfing your password will have a worthless string of letters and numbers as the password will work once and only once. Next logon a new random, One-Time Password is generated.
This secure method of authentication does what static passwords cannot, it gives you the confidence and peace-of-mind that a user logging on to the network, really is who he or she claims to be and not someone just using a stolen, lost or shared password.
|
|
