General discussion

Locked

Authentication of Remote Users.

By michael ·
With the increasing use of laptops, remote users are dialling into our corporate network. I am being advised to install a dynamic password devices such as Secure ID or Cryptocard (little key ring devices with an LCD display).

Is this "over the top" security?

Any feedback on Secure ID or Cryptocard would be much appreciated.

This conversation is currently closed to new comments.

5 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

Authentication of Remote Users.

by Some Guy in Seattle In reply to Authentication of Remote ...

Not over the top at all. It's a pretty standard authentication device. A lot of remote users aren't in the mindset of preserving corporate security on their laptop. Some login schemes allow the user to store the password in a cache file so the user doesn't always have to type it in. If not, the user sometimes creates a file to store these passwords in because "they're too hard to remember." Not very secure if the laptop gets stolen or lost.

The object is to try and keep the security schemes out of the responsibility of the users - they're not being paid to be network security gurus, you are. And anything that can provide a method of secure authentication while still remaining passably easy is a bonus.

Bottom line, I recommend them since anyone is able to dial into your line and lots of software exists for password guessing/cracking.

Hope that helps,

Collapse -

Authentication of Remote Users.

by michael In reply to Authentication of Remote ...

Poster rated this answer

Collapse -

Authentication of Remote Users.

by erikdr In reply to Authentication of Remote ...

Fully agree with nr. 1 on the fact that you _do_ need knowledge/possession type of authentication for this. Tokens like SecurId are one type.
What we use in our multinational is
- a token which the user inserts in the floppydrive of the notebook
- a PIN to unlock the token.
Of course floppies are slowly becoming less common for notebooks, so as an alternative they can get a challenge/response calculator with a PIN; and maybe once we will migrate to SecurID type of protection (which we do use, positively, for some B2C website protection).

Hope this helps,

<Erik> - The Netherlands

Collapse -

Authentication of Remote Users.

by michael In reply to Authentication of Remote ...

Poster rated this answer

Collapse -

Authentication of Remote Users.

by michael In reply to Authentication of Remote ...

This question was closed by the author

Back to Software Forum
5 total posts (Page 1 of 1)  

Related Discussions

Related Forums