2 fa it101

•Download as PPTX, PDF•

0 likes•58 views

c_______101

Two-Factor Authentication

Technology

What is it?
https://www.netsafe.org.nz/2-factor-authentication/

Why should you use it?
https://www.eff.org/deeplinks/2016/12/12-days-2fa-how-enable-two-factor-authentication-your-online-accounts
https://elie.net/blog/security/how-to-improve-your-online-security-and-privacy-in-10-
easy-steps/
https://whatismyipaddress.com/two-factor-authentication

Central Idea
https://www.borer.co.uk/borer-technology/multi-factor-identity-authentication/

Something you know
https://www.indiatoday.in/technology/features/story/600-million-
facebook-passwords-seen-by-employees-1483906-2019-03-22
https://www.pcworld.com/article/3392860/5-alarming-facts-in-honor-
of-world-password-day.html
https://en.wikipedia.org/wiki/Password
https://www.thesun.co.uk/tech/7978489/worst-passwords-most-
common-2018/

Something you have
https://www.boostmobile.com/phones/apple-
iphone-6s-plus-preowned.html
https://www.verizonwireless.com/smartphones/samsung-
galaxy-s9/
https://guide.duo.com/tokens

Something You Are
http://www.proctorcars.com/biometrics-in-cars-unlocking-your-car-with-a-fingerprint-scanner-to-become-a-standard-feature/
https://www.ifsecglobal.com/global/biometric-security-systems-guide-devices-fingerprint-scanners-facial-recognition/
https://www.azcentral.com/story/money/business/tech/2017/09/22/why-voice-recognition-dictation-software-still-
long-way-go/690595001/
https://newsroom.cisco.com/feature-content?type=webcontent&articleId=1938827

How does it work?
https://www.macrumors.com/how-to/apple-id-two-factor-authentication/
https://duo.com/product/trusted-users/two-factor-authentication
https://www.wpbeginner.com/plugins/improve-wordpress-security-with-google-authenticator/
https://medium.com/@mshelton/two-factor-authentication-for-beginners-b29b0eec07d7

How does it work?
https://www.macrumors.com/how-to/apple-id-two-factor-authentication/
https://www.wpbeginner.com/plugins/improve-wordpress-security-with-google-authenticator/
https://medium.com/@mshelton/two-factor-authentication-for-beginners-b29b0eec07d7
https://duo.com/product/trusted-users/two-factor-authentication

Pros to 2FA
http://ipayguru.com/gold/storage/online-security/

Cons to 2FA
https://www.rd.com/advice/places-you-should-never-keep-your-phone/
https://ting.com/blog/tri-band-lte-now-available-in-17-new-markets/
https://www.infosecurity-magazine.com/magazine-features/hard-soft-or-smart-evaluating-the-two-factor/

Faults of 2FA
https://blog.malwarebytes.com/cybercrime/2018/09/mobile-menace-
monday-sms-phishing-attacks-target-the-job-market/
https://nakedsecurity.sophos.com/2011/04/04/rsa-release-details-on-security-breach/
https://help.myspace.com/hc/en-us/articles/201956084-Forgot-Password

Other Concerns
https://www.howtogeek.com/121875/htg-explains-why-does-windows-8-want-me-to-trust-this-pc/
https://it.cornell.edu/twostep/remember-me-24-hours

How many sites use 2FA?
https://twofactorauth.org
https://instagram-press.com
https://twitter.com/snapchat
https://www.amazon.com
https://www.wowo.com/scammers-target-chase-bank-customers-emails-texts/

Personal Experience
http://www.ciobulletin.com/cyber-security/stockx-data-breach-hack
https://stockx.com
https://www.classaction.org/news/class-action-claims-stockx-failed-to-prevent-attempted-to-cover-up-data-breach

Sources
 https://www.wired.com/insights/2013/04/five-myths-
of-two-factor-authentication-and-the-reality/
 https://www.cnet.com/news/two-factor-
authentication-what-you-need-to-know-faq/
 https://searchsecurity.techtarget.com/definition/two-
factor-authentication
 https://www.intego.com/mac-security-blog/two-factor-
authentication-how-it-works-and-why-you-should-use-
it/
 https://www.cnet.com/how-to/how-and-why-to-use-
two-factor-authentication/

Similar to 2 fa it101

If you think you’re safe because you have two-factor authentication protecting your applications and data, you might want to rethink your security strategy. While certain two-factor methods can be secure, others can be easily defeated leaving you vulnerable to attacks. Learn why simple two-factor authentication is not enough and what you can do to make sure you are protected. We'll present a new approach to authentication, which continuously analyzes risk-factors including, geo-location, behavioural biometrics and threat intelligence, to ensure your users are who they say they are.

Why Two-Factor Isn't Enough

SecureAuth

Global Azure Bootcamp 216 - Azure Rights Management

Riwut Libinuko

Open Id

Robin Hastings

Top tips for protecting your business online Oct 13

Vanguard Visions

Last year was a year of great progress for the FIDO Alliance and standards-based strong authentication. Tens of millions of FIDO-enabled devices are now in use worldwide. There are over 100 FIDO Certified™ products available, and nearly 250 organizations are now taking part in the Alliance, including more than a dozen trade association partners. The market is clearly showing that now is the time to deploy FIDO authentication to modernize failing password systems. These slides address: – The uptake in global momentum – Details on FIDO’s recent submission to the World Wide Web Consortium – The Alliance’s plans and strategy for 2016 and what this means to you and your organization in the upcoming year We encourage you and your colleagues to view these slides to catch up on what happened in 2015 and to learn how FIDO’s explosive growth can benefit your organization in 2016. You can listen to the webinar audio here: https://fidoalliance.org/events/fido-alliance-year-in-review-webinar/

FIDO Alliance: Year in Review Webinar slides from January 20 2016

FIDO Alliance

"Build digital" reading list

Lori Kent

OAuth 2.0 is now the default mechanism for authorizing access to Web services APIs, supported by providers across the Internet. In this workshop, aimed at developers and architects, we will look at the OAuth 2.0 protocol, build a portal on Force.com that acquires customers via Facebook, logs them in via OAuth 2.0, and use the Facebook Graph API to create a social application, combining business data in Force.com with users' social graphs in Facebook. Bring a laptop with a web browser and a text editor - no development environment needed - we'll be coding in the cloud, baby! Presented at Cloud Identity Summit 2012.

Hands-on with OAuth, Facebook and the Force.com Platform

Pat Patterson

mobile case_presentation_byod_dey_sushmita

Cisco

Cheqd: Making privacy-preserving digital credentials fun

SSIMeetup

Microsoft 365 Security Overview

Robert Crane

Bug Bounty #Defconlucknow2016

Shubham Gupta

Blackhat Analyics 4: May the 25th be with you!

Phil Pearce

December 2019 Microsoft 365 Need to Know Webinar

Robert Crane

Cyber Security Workshop @SPIT- 3rd October 2015

Nilesh Sapariya

Beyond what is ORCID... using the API (L. Paglione)

ORCID, Inc

Transcript

David Walls

Trust at the Interface of Start-up and Enterprise

Benjamin Elias

Growth hacks for miva driven businesses

Gillian Muessig

Gillian Muessig, CEO of Outlines Venture Group, CEOcoach at WebmasterRadio.fm and cofounder of Moz opens the kimono on how to optimize the value of your ecommerce business. It's not only about eyeballs, clicks, conversions and customer service... although they all matter. Learn about the assets and attributes of successful CEOs. Many are not innate and you can learn to incorporate them into your business and leverage them to make your business more successful, streamlined, and less stressful.

Growth hacks for miva driven businesses

Miva

Passwords are passé. WebAuthn is simpler, stronger and ready to go

Michael Furman

Similar to 2 fa it101 (20)

Why Two-Factor Isn't Enough

Global Azure Bootcamp 216 - Azure Rights Management

Open Id

Top tips for protecting your business online Oct 13

FIDO Alliance: Year in Review Webinar slides from January 20 2016

"Build digital" reading list

Hands-on with OAuth, Facebook and the Force.com Platform

mobile case_presentation_byod_dey_sushmita

Cheqd: Making privacy-preserving digital credentials fun

Microsoft 365 Security Overview

Bug Bounty #Defconlucknow2016

Blackhat Analyics 4: May the 25th be with you!

December 2019 Microsoft 365 Need to Know Webinar

Cyber Security Workshop @SPIT- 3rd October 2015

Beyond what is ORCID... using the API (L. Paglione)

Transcript

Trust at the Interface of Start-up and Enterprise

Growth hacks for miva driven businesses

Passwords are passé. WebAuthn is simpler, stronger and ready to go

Recently uploaded

Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood

Juan lago vázquez

Retrieval augmented generation (RAG) is the most popular style of large language model application to emerge from 2023. The most basic style of RAG works by vectorizing your data and injecting it into a vector database like Milvus for retrieval to augment the text output generated by an LLM. This is just the beginning. One of the ways that we can extend RAG, and extend AI, is through multilingual use cases. Typical RAG is done in English using embedding models that are trained in English. In this talk, we’ll explore how RAG could work in languages other than English. We’ll explore French, Chinese, and Polish.

Introduction to Multilingual Retrieval Augmented Generation (RAG)

Zilliz

At its core, the challenge of managing Human Resources data is an integration challenge: estimates range from 2-3 HR systems in use at a typical SMB, up to a few dozen systems implemented amongst enterprise HR departments, and these systems seldom integrate seamlessly between themselves. Providing a multi-tenant, cloud-native solution to integrate these hundreds of HR-related systems, normalize their disparate data models and then render that consolidated information for stakeholder decision making has been a substantial undertaking, but one significantly eased by leveraging Ballerina. In this session, we’ll cover: The overall software architecture for VHR’s Cloud Data Platform Critical decision points leading to adoption of Ballerina for the CDP Ballerina’s role in multiple evolutionary steps to the current architecture Roadmap for the CDP architecture and plans for Ballerina WSO2’s partnership in bringing continual success for the CD

Less Is More: Utilizing Ballerina to Architect a Cloud Data Platform

WSO2

Elevate Developer Efficiency & build GenAI Application with Amazon Q

Bhuvaneswari Subramani

Join our latest Connector Corner webinar to discover how UiPath Integration Service revolutionizes API-centric automation in a 'Quote to Cash' process—and how that automation empowers businesses to accelerate revenue generation. A comprehensive demo will explore connecting systems, GenAI, and people, through powerful pre-built connectors designed to speed process cycle times. Speakers: James Dickson, Senior Software Engineer Charlie Greenberg, Host, Product Marketing Manager

Connector Corner: Accelerate revenue generation using UiPath API-centric busi...

DianaGray10

The microservices honeymoon is over. When starting a new project or revamping a legacy monolith, teams started looking for alternatives to microservices. The Modular Monolith, or 'Modulith', is an architecture that reaps the benefits of (vertical) functional decoupling without the high costs associated with separate deployments. This talk will delve into the advantages and challenges of this progressive architecture, beginning with exploring the concept of a 'module', its internal structure, public API, and inter-module communication patterns. Supported by spring-modulith, the talk provides practical guidance on addressing the main challenges of a Modultith Architecture: finding and guarding module boundaries, data decoupling, and integration module-testing. You should not miss this talk if you are a software architect or tech lead seeking practical, scalable solutions. About the author With two decades of experience, Victor is a Java Champion working as a trainer for top companies in Europe. Five thousands developers in 120 companies attended his workshops, so he gets to debate every week the challenges that various projects struggle with. In return, Victor summarizes key points from these workshops in conference talks and online meetups for the European Software Crafters, the world’s largest developer community around architecture, refactoring, and testing. Discover how Victor can help you on victorrentea.ro : company training catalog, consultancy and YouTube playlists.

Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024

Victor Rentea

"I see eyes in my soup": How Delivery Hero implemented the safety system for ...

Zilliz

Architecting Cloud Native Applications

WSO2

Dubai, known for its towering skyscrapers, luxurious lifestyle, and relentless pursuit of innovation, often finds itself in the global spotlight. However, amidst the glitz and glamour, the emirate faces its own set of challenges, including the occasional threat of flooding. In recent years, Dubai has experienced sporadic but significant floods, disrupting normalcy and posing unique challenges to its infrastructure. Among the critical nodes in this bustling metropolis is the Dubai International Airport, a vital hub connecting the world. This article delves into the intersection of Dubai flood events and the resilience demonstrated by the Dubai International Airport in the face of such challenges.

Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf

Orbitshub

Stronger Together: Developing an Organizational Strategy for Accessible Desig...

caitlingebhard1

[BuildWithAI] Introduction to Gemini.pdf

Sandro Moreira

How to Check CNIC Information Online with Pakdata cf

danishmna97

AI+A11Y 11MAY2024 HYDERBAD GAAD 2024 - HelloA11Y (11 May 2024)

Samir Dash

Key topics covered: - Real-world examples of Choreo's comprehensive coverage from application design and deployment, security, scaling, and monitoring - Running different types of workloads, such as web applications, APIs, microservices, integrations, and tasks at scale, and wire them together to deliver seamless omnichannel digital experiences - How Choreo improves the developer experience by eliminating repetition, silos, and redundancy through enhanced discoverability and self-serviceability

Choreo: Empowering the Future of Enterprise Software Engineering

WSO2

Simplifying Mobile A11y Presentation.pptx

MarkSteadman7

In this session, we will discuss the journey of API governance from its initial, ungoverned state to the development of sophisticated models that tackle contemporary challenges. We'll explore how APIs have become essential in the intersection of business and technology, adapting to advancements and evolving needs. We'll focus on how organizations have moved from launching to monetizing APIs, using models like pay-per-use and subscriptions, and finding the right balance between technical implementation and business strategy. We'll also highlight the impact of governance on monetization strategies, especially how data security, compliance, and service quality influence pricing. Real-world examples will demonstrate the effective integration of governance with monetization, including AI's role in dynamic pricing. Looking ahead, we'll share insights into future trends in API governance and monetization, emphasizing the importance of adaptability, continuous learning, and innovation.

API Governance and Monetization - The evolution of API governance

WSO2

The presentation was made in “Web3 Fusion: Embracing AI and Beyond” is more than a conference; it's a journey into the heart of digital transformation. The conference a provided a platform where the future of technology meets practical application. This three-day hybrid event, set in the heart of innovation, served as a gateway to the latest trends and transformative discussions in AI, Blockchain, IoT, AR/VR, and their collective impact on the information space.

AI in Action: Real World Use Cases by Anitaraj

AnitaRaj43

In the ever-evolving landscape of data management, Zero-ETL is an approach that is reshaping how businesses handle and integrate their data. This webinar explores Zero-ETL, a paradigm shift from the traditional Extract, Transform, Load (ETL) process, offering a more streamlined, efficient, and real-time data integration method. We will begin with an introduction to the concept of Zero-ETL, including how it allows direct access to data in its native environment and real-time data transformation, providing up-to-date information with significantly reduced data redundancy. Next, we'll take you through several demonstrations showing how Zero-ETL can deliver real-time data and enable the free movement of data between systems. We will also discuss the various tools that support all aspects of Zero-ETL, providing attendees with an understanding of how they can adopt this innovative approach in their organizations. Lastly, the session will conclude with an interactive Q&A segment, allowing participants to gain deeper insights into how Zero-ETL can be tailored to their specific business needs and how they can get started today. Join us to discover how Zero-ETL can elevate your organization's data strategy.

The Zero-ETL Approach: Enhancing Data Agility and Insight

Safe Software

Introduction to use of FHIR Documents in ABDM

Kumar Satyam

CNIC Information System with Pakdata Cf In Pakistan

danishmna97

Recently uploaded (20)

Polkadot JAM Slides - Token2049 - By Dr. Gavin Wood

Introduction to Multilingual Retrieval Augmented Generation (RAG)

Less Is More: Utilizing Ballerina to Architect a Cloud Data Platform

Elevate Developer Efficiency & build GenAI Application with Amazon Q

Connector Corner: Accelerate revenue generation using UiPath API-centric busi...

Modular Monolith - a Practical Alternative to Microservices @ Devoxx UK 2024

"I see eyes in my soup": How Delivery Hero implemented the safety system for ...

Architecting Cloud Native Applications

Rising Above_ Dubai Floods and the Fortitude of Dubai International Airport.pdf

Stronger Together: Developing an Organizational Strategy for Accessible Desig...

[BuildWithAI] Introduction to Gemini.pdf

How to Check CNIC Information Online with Pakdata cf

AI+A11Y 11MAY2024 HYDERBAD GAAD 2024 - HelloA11Y (11 May 2024)

Choreo: Empowering the Future of Enterprise Software Engineering

Simplifying Mobile A11y Presentation.pptx

API Governance and Monetization - The evolution of API governance

AI in Action: Real World Use Cases by Anitaraj

The Zero-ETL Approach: Enhancing Data Agility and Insight

Introduction to use of FHIR Documents in ABDM

CNIC Information System with Pakdata Cf In Pakistan

2 fa it101

1. Two-Factor Authentication (2FA) By: Christopher Ward-Willis https://digitogy.com/google- authenticator-review/ https://doit.umbc.edu/security/?id=76035 https://support.apple.com/en-us/HT205075

2. What is it? https://www.netsafe.org.nz/2-factor-authentication/

3. Why should you use it? https://www.eff.org/deeplinks/2016/12/12-days-2fa-how-enable-two-factor-authentication-your-online-accounts https://elie.net/blog/security/how-to-improve-your-online-security-and-privacy-in-10- easy-steps/ https://whatismyipaddress.com/two-factor-authentication

4. Central Idea https://www.borer.co.uk/borer-technology/multi-factor-identity-authentication/

5. Something you know https://www.indiatoday.in/technology/features/story/600-million- facebook-passwords-seen-by-employees-1483906-2019-03-22 https://www.pcworld.com/article/3392860/5-alarming-facts-in-honor- of-world-password-day.html https://en.wikipedia.org/wiki/Password https://www.thesun.co.uk/tech/7978489/worst-passwords-most- common-2018/

6. Something you have https://www.boostmobile.com/phones/apple- iphone-6s-plus-preowned.html https://www.verizonwireless.com/smartphones/samsung- galaxy-s9/ https://guide.duo.com/tokens

7. Something You Are http://www.proctorcars.com/biometrics-in-cars-unlocking-your-car-with-a-fingerprint-scanner-to-become-a-standard-feature/ https://www.ifsecglobal.com/global/biometric-security-systems-guide-devices-fingerprint-scanners-facial-recognition/ https://www.azcentral.com/story/money/business/tech/2017/09/22/why-voice-recognition-dictation-software-still- long-way-go/690595001/ https://newsroom.cisco.com/feature-content?type=webcontent&articleId=1938827

8. How does it work? https://www.macrumors.com/how-to/apple-id-two-factor-authentication/ https://duo.com/product/trusted-users/two-factor-authentication https://www.wpbeginner.com/plugins/improve-wordpress-security-with-google-authenticator/ https://medium.com/@mshelton/two-factor-authentication-for-beginners-b29b0eec07d7

9. How does it work? https://www.macrumors.com/how-to/apple-id-two-factor-authentication/ https://www.wpbeginner.com/plugins/improve-wordpress-security-with-google-authenticator/ https://medium.com/@mshelton/two-factor-authentication-for-beginners-b29b0eec07d7 https://duo.com/product/trusted-users/two-factor-authentication

10. Pros to 2FA http://ipayguru.com/gold/storage/online-security/

11. Cons to 2FA https://www.rd.com/advice/places-you-should-never-keep-your-phone/ https://ting.com/blog/tri-band-lte-now-available-in-17-new-markets/ https://www.infosecurity-magazine.com/magazine-features/hard-soft-or-smart-evaluating-the-two-factor/

12. Faults of 2FA https://blog.malwarebytes.com/cybercrime/2018/09/mobile-menace- monday-sms-phishing-attacks-target-the-job-market/ https://nakedsecurity.sophos.com/2011/04/04/rsa-release-details-on-security-breach/ https://help.myspace.com/hc/en-us/articles/201956084-Forgot-Password

13. Other Concerns https://www.howtogeek.com/121875/htg-explains-why-does-windows-8-want-me-to-trust-this-pc/ https://it.cornell.edu/twostep/remember-me-24-hours

14. How many sites use 2FA? https://twofactorauth.org https://instagram-press.com https://twitter.com/snapchat https://www.amazon.com https://www.wowo.com/scammers-target-chase-bank-customers-emails-texts/

15. Personal Experience http://www.ciobulletin.com/cyber-security/stockx-data-breach-hack https://stockx.com https://www.classaction.org/news/class-action-claims-stockx-failed-to-prevent-attempted-to-cover-up-data-breach

16. Personal Experience

17. Personal Experience

18. Personal Experience

19. Personal Experience

20. Sources  https://www.wired.com/insights/2013/04/five-myths- of-two-factor-authentication-and-the-reality/  https://www.cnet.com/news/two-factor- authentication-what-you-need-to-know-faq/  https://searchsecurity.techtarget.com/definition/two- factor-authentication  https://www.intego.com/mac-security-blog/two-factor- authentication-how-it-works-and-why-you-should-use- it/  https://www.cnet.com/how-to/how-and-why-to-use- two-factor-authentication/

2 fa it101

Recommended

Recommended

More Related Content

Similar to 2 fa it101

Similar to 2 fa it101 (20)

Recently uploaded

Recently uploaded (20)

2 fa it101