To address these shortcomings, NIST and OMB have issued guidance to help agencies augment their authentication approaches.
#Duo mfa token software#
However, many users may require a token that works by itself without additional hardware or software needs. Usability: PIV cards require extensive resources such as readers and middleware to function properly.Many times, these controls are not compatible with PIV cards. Cloud Platforms: With agencies increasingly utilizing third parties for computing workloads, they are not always able to control the authentication process and must adopt the authentication controls that are in place.Instead, agencies must still allow lower assurance mechanisms such as passwords so these users can access the systems they require. Non-PIV Eligible: From short term contractors to public consumers, many users of government computing resources are not eligible for a PIV credential.Let’s explore some common problems below: These deficiencies can leave large groups of users without credentials or even force certain resources to rely on outdated authentication schemes because they do not support traditional PIV cards. MotivationĪlthough the PIV card is the strongest authentication token that can be used, the PIV card alone fails to meet many of the evolved operational needs of today’s advanced agency infrastructures. It covers the motivation for seeking new authentication techniques, how this token meets the most stringent security requirements and finally the uses and benefits of this approach. This article explores how the Yubikey FIPS + Duo Multi-Use Authentication Token can immediately help agencies meet new authentication needs with a secure token that is easy to use and deploy. Yubikey FIPS + Duo Security = Increased Authentication Capabilities
0 kommentar(er)
