Strong Authentication - Multi-Factor Identity Assurance
Government Regulations, Multi-factor Authentication, Authentication Devices,
Regulatory requirements and economic realities are pressuring organizations to secure access to applications and networks. Many industry standards and government regulations now deem static passwords as inadequate and establish guidance that multi-factor authentication should replace single-factor authentication. The Sarbanes-Oxley Act (SOX), recommendations from the Federal Financial Institutions Examination Council (FFIEC), and the Health Insurance Portability and Accountability Act (HIPAA) all require that organizations use stronger forms of authentication to mitigate fraud and protect customer information and patient privacy.
While static passwords continue to dominate as the primary mechanism for identity verification, they create numerous issues for users and organizations alike. Static passwords are often created by users to be easily remembered, making them vulnerable to guessing, social engineering, and brute force dictionary attacks. Even static passwords created under a stringent policy are vulnerable because users write them down and display them in open areas. A key security concern with static passwords is the fact that a compromise (via keystroke logger or network sniffer) often goes undetected, introducing unknown risks to the organization.
ActivIdentity Strong Authentication products provide the following key benefits for adopting organizations:
- Cost-effective multi-factor authentication, which eliminates the vulnerabilities associated with static passwords
- Broad support of authentication devices and authentication methods that provide user convenience and address a variety of risk levels for organizations
- An open standards-based platform that seamlessly integrates into any existing computing environment
- Support for compliance with industry and government regulations covering multi-factor authentication, authorization, and auditing
, Government Regulations
, Multi-factor Authentication