The global response to the COVID-19 pandemic has lad to several trends. More employees than ever are working from home. They are sheltering in place with spouses and kids. We need to be aware that home offices simply do not have the same physical security as an office environment. Not surprisingly, bad actors are aggressively seizing this opportunity, with phishing being the attack of choice.
We mustn’t forget that the human factor is cruical there. Many employees do not follow best practices to secure passwords from online hackers or members of their own households. An astounding 42% of employees surveyed still physically write passwords down, 34% digitally capture them on their smartphones and 27% digitally capture them on their computers. Additionally, nearly 20% of the employees surveyed are using the same password across multiple work systems, multiplying the risk of sensitive data if one password is compromised or stolen.
What is the solution?
Instead of relying solely on user names and passwords, security professionals should consider adding an additional security layer for their access controls by implementing multi-factor authentication (MFA). If a cyber-attack, like for example a phishing email, exposes employee passwords and usernames, multifactor authentication could prevent an attacker from successfully accessing the account as it requires other forms of proof of your actual identity.
When it comes to MFA methods, organizations have a wealth of choices but should realize that there is no “one-fits-all” approach. Instead, they should select alternatives that are best aligned with their use cases and represent the lowest friction experience for users to assure broad adoption.
Entrust Identity is the IAM portfolio that provides the strong foundation you need to realize a Zero Trust framework. And as one unified IAM portfolio, Entrust Identity supports an unparalleled number of use cases and deployment options:
Multi-factor authentication (MFA):
Entrust Identity can be deployed in the cloud or on-premises. As well, Entrust works with Managed Service Providers to deliver Entrust Identity as a managed service.
The main features of the Entrust authentication solution are:
- Complements your existing IT infrastructures and workflows vs. seeking to replace.
- Delivers the widest support of VPN, cloud and on-premise based applications.
- Provides the option for certificate-based authentication which also supports the industry’s only real high assurance passwordless solution.
- Offers a mobile platform with one modern unified app that works across the portfolio.
- Provides available out-of-the-box integrations, SAML/OIDC, and APIs .
- Includes a mobile development kit so you can embed authentication directly into your own apps and brand as your own as desired.
- Offers access to the industry’s largest MDM ecosystem, including Microsoft Intune, MobileIron, Citrix, and VMware AirWatch..
- Ensures easy IT implementation and efficient operation with point-and-click provisioning and policy management, and self-service password resets.
We invite you to read the brochure Entrust Identity for Workforce.