Understanding the basics of two-factor authentication
Two-factor authentication (2FA) is the least complex version of multi-factor authorization (MFA) and was invented to add an extra layer of security to the – now considered old-fashioned and insecure –...
View ArticleDNSSEC: why do we need it?
DNSSEC is short for Domain Name System Security Extensions. It is a set of extensions that add extra security to the DNS protocol. This is done by enabling the validation of DNS requests, which is...
View ArticleSimple Authentication and Security Layer (SASL) vulnerabilities
Simple Authentication and Security Layer (SASL) is an authentication layer used in Internet protocols. SASL is not a protocol, but rather a framework that provides developers of applications and shared...
View ArticleIs FIDO the future instrument to prove our identity?
FIDO, short for Fast IDentity Online, is an industry consortium started in 2013 to address the lack of interoperability among strong authentication devices and the problems users face creating and...
View ArticleBusiness email compromise scam costs Pathé $21.5 million
Recently released court documents show that European-based cinema chain Pathé lost a small fortune to a business email compromise (BEC) scam in March 2018. How much? An astonishing US$21.5 million...
View ArticleWhen can we get rid of passwords for good?
Or perhaps I should have asked, “Can we ever get rid of passwords for good?” The security world knows passwords are a problem. Products ship with default passwords that are never changed. People reuse...
View Article
More Pages to Explore .....