authentication

Latest News

  • Zeus botnet malware is improving for hackers

    And the VNC module, which allows the attacker to get around any smartcard that's required for large-dollar transactions, is $10,000.The latest version is also designed to blow through the most current defences in place regarding two-factor and…
    12 March 2010
    Tags: WindowsbasedTransactionsCriminalBotnetAttackersAttacker

  • FDIC: Hackers stole $120m in three months of online bank fraud

    Money is then transferred out of the account using the Automated Clearing House (ACH) system that banks use to process payments between institutions.Even though banks now force customers to use several forms of authentication, hackers are still…
    09 March 2010
    Tags: InstitutionsFraudBankAuthenticationAccountsAccount

  • Google reveals Chrome OS security details

    This, he said, should reassure those acquiring a Google Netbook about the product's security.Google plans to release a consumer version later this year and a business version featuring more management muscle in 2011, Drewry said.All of the Google…
    08 March 2010
    Tags: ProtectNetbookMalwareHostEngineerChrome

  • RSA 1024-bit private key encryption cracked

    Three University of Michigan computer scientists say they have found a way to exploit a weakness in RSA security technology used to protect everything from media players to smartphones and ecommerce servers.RSA authentication is susceptible, they…
    05 March 2010
    Tags: UniversitySmartphonesResearchersProtectEcommerceAuthentication

  • RSA extends security tools to VMware

    They are moving toward the point where applications, data, virtual machines and people will all combine on the fly and software will have to ensure that each piece is added to the mix securely, he said.On Thursday, RSA announced that its SecurID…
    05 March 2010
    Tags: PackagesEventsEnvironmentsControlsAuthenticationActions

  • Google, PayPal launch Open Identity Exchange

    ICAM, co-chaired by the General Services Administration and the Deptartment of Defence, is composed of chief privacy officers within the federal government who have agreed on a set of privacy and security policies and technologies related to…
    05 March 2010
    Tags: PrivacyIdentityFederalComplianceCioAgencies

Latest Features

  • The security nightmare of REST web services

    For instance, most APIs handle authentication using a key but no secret, essentially requiring a user name but no password. Another problem is using HTTP basic authentication (with no SSL) and letting the user name and password cross the wire with…
    25 February 2010
    Tags: TrustTransferProtocolMovementAuthenticationApis

  • Active Directory: 10 years old and thinking cloud

    It is not easy to build and it takes time for something as ambitious and complex as a directory.But Lewis says there is no question that AD today is considered by a lot of enterprises to be the foundation of their user repository and hub for their…
    18 February 2010
    Tags: Windows ServerNetwork WorldLegacyAddonActive DirectoryAccess Control

  • The state of Internet security

    While it took longer for CSRF to appear than expected, the rise in CSRF incidents is in line with authentication abuse since it provides an alternative mechanism for performing actions on behalf of a victim.The trinity of troubleRegardless of the…
    18 February 2010
    Tags: PriorityLoginJavascriptInputDatabasesActions

  • Fact, fiction and the Internet

    Most of us except for financial institutions, that is, or so it appears.In a recent blog post, security expert Roger Thompson related how an authentication check by his credit card company resulted in their asking him a question to verify his…
    01 February 2010
    Tags: Social NetworkingFacebookInstitutionsAgeRealiseFriends

  • Lessons for companies from the Google China attack

    Strong user authentication and access control measures can help mitigate this issue, Kurtz said.Tools are also available that can help companies verify the authenticity of links that users might click on, to help prevent them from browsing to a…
    20 January 2010
    Tags: TheftTargetsDownloadingCrimeChinaActivity

  • Security compliance: The root of insanity

    While PCI provides some very prescriptive guidance around areas such as wireless, firewall placement, the use of two-factor authentication, which ISO27002 does not, it does not mention in any great detail disaster recovery and or business…
    10 December 2009
    Tags: VisionContinuityBreachAchievedOrganizationRequirement

Related Tags

Click on tag below to narrow your search
802.11i 802.1x EAP Extensible RADIUS RADIUS server RSA authenticate identity management one-time single sign-on strong authentication token two-factor authentication
 

How-Tos

  • How to protect your banking online

    Despite increased regulation, many financial institutions still have not implemented the latest technologies beyond user authentication that are necessary to fight today's sophisticated threats. The malware used to initially gain access to accounts…
    09 March 2010
    Tags: VictimTransfersTransactionsProceduresAssumeAlerts

  • How to get an Apple iPad for work

    As of yet, we don't know if the iPad will allow for local AFP or WebDAV access, or, if it does, what authentication mechanisms will be supported. Will the iPad fit in with your network? Can IT support the iPad?
    19 February 2010
    Tags: PresentationsMac OsKeynoteIphonesIgnoreAssuming

  • How to make cloud computing more secure

    Don't trust machine instancesWhen using a virtual machine from a provider, such as the third-party instances created on Amazon's Elastic Cloud Computing (EC2) infrastructure, companies should never trust the system, says SensePost's Meer.The…
    10 August 2009
    Tags: GuysFirmsAmazonInstancesTrustThirdparty

  • How to make cloud more secure

    Don't trust machine instances When using a virtual machine from a provider, such as the third-party instances created on Amazon's Elastic Cloud Computing (EC2) infrastructure, companies should never trust the system, says SensePost's Meer.The…
    07 August 2009
    Tags: Third PartyFirmsScanAmazonInstancesConfigured

  • How to assess laptop encryption products

    All you need is a laptop containing a TPM security coprocessor and, optionally, an encryption-enabled hard drive from one of the major hard drive manufacturers.The TPM is a chip soldered on to the laptop's motherboard, providing hardware-based…
    20 January 2009
    Tags: Enterprise ClassThird PartyFolderMotherboardDiscContents

  • Bring the new iPhone into your business

    In either case, the iPhone's Mail setup is where to begin configuring host addresses, user names, passwords, and SSL authentication.A tip for Exchange setup in the current iPhone 1.x version: Even though the iPhone's current Mail setup includes an…
    11 June 2008
    Tags: Mac OsSecuringVpnsCalendarSafariKill

Reviews

  • Forefront Unified Access Gateway 2010 review

    LDAP authentication, always one of the biggest bugaboos, is helped in UAG by the creation of templates for some common LDAP servers. With SecurID, we wanted to get group information out of Active Directory — a common approach for most…
    08 March 2010
    Tags: PortalMicrosoft WindowsEndpointCredentialsCheckingActive Directory

  • BitLocker review

    BitLocker can use either transparent operation mode (where the TPM automates key entry) or a user authentication mode (where the user must manually input a password). I looked at the BitLocker application included with Windows 7, which is broken…
    10 February 2010
    Tags: RemovablePanelMasterHard DrivesEncryptEditions

  • SonicWALL firewalls round up

    The SSL VPN includes a simple portal that can be used to launch or download the Java-based SSL VPN client (available for Windows, Macintosh, and Linux operating systems).A small set of SSL VPN specific settings, such as whether to use split…
    20 January 2010
    Tags: United StatesSignaturesAccess ControlEnforceIp AddressesLowend

  • Sychron OnDemand review

    With OnDemand, users access VM sessions via Web page authentication. With OnDemand, users access VM sessions via Web page authentication. Session links from client to VM are accomplished via Java (JRE 1.6).
    13 January 2010
    Tags: Active DirectoryWindows XpVmCreatingSessionsOndemand

  • Quest vWorkspace 6 review

    Most of the products we tested used either their own authentication or Active Directory's username/password/domain authentication regimen.Desktop time availability was an additional option that made a lot of sense to us and was unavailable…
    13 January 2010
    Tags: SetupPlatformsDomainAuthenticationActive Directory

  • Citrix XenApp 5 review

    The IIS or Apache Web services layer, running on a specific server or set of servers, communicates with the XenApp server farm to handle load balancing, application delivery, authentication, and authorization.
    23 September 2009
    Tags: Active DirectoryFlagshipPlaybackTerminalInstallationsBalancing

White Papers

  • Meet PCI Compliance Standards for 2009

    Find out more about two-factor authentication (2FA or T-FA) on SSL and IPSec VPN PCI DSS is a standard any SMB or enterprise that accepts, and handles credit card data must meet. Becoming "PCI compliant" is now a must or the business will face…
    28 September 2009
    Tags: FaceNetgearVpnPciCredit Card

  • Trusted Identities, Managed Access

    Most organisations have taken a piecemeal approach to deploying mobile identity and access management, including VPNs, authentication, or single sign-on products. Whether you are looking to securely deliver applications and data to remote employees…
    08 June 2009
    Tags: ImplementingAccess ManagementIdentitySignSecurelyRelationships

  • Security and Trust: The backbone of doing business over the internet

    But with the rising sophistication of Internet crooks, encryption is no longer enough.This paper proceeds to present the issues of authentication and trust building that have recently grown critical and the Extended Validation (EV) SSL technology…
    01 June 2009
    Tags: ProtectNumbersIdentityAddressesTrustVerisign

  • Tripwire keeping Vesta secure

    Vesta is a company for whom security is paramount. As an organisation that processes credit card payments, its whole business is built on the twin bases of security and trust. And with three audits yearly, its processes have to be particularly strong.
    10 October 2008
    Tags: CreditCompliancePaperProcessesPciTripwire

  • Securing the Wired and Wireless Network

    In these situations users and devices need to be independently monitored based on location and authentication method. Identifying business requirements for network security and acting on them. Many of today's WLAN security issues stem from a lack…
    02 April 2008
    Tags: WiredNetwork SecurityMethodDriversFlexibilityIntegration

  • Oracle Adaptive Access Manager

    Oracle Adaptive Access Manager Oracle Getting to grips with strong authentication whitepaper Businesses, government agencies, and consumers all face the growing threat of internet fraud. This white paper looks at Oracle Adaptive Access Manager…
    07 March 2008
    Tags: PaperBlockingPhishingNext GenerationAccess ManagerAdaptive

Popular Searches

See what's hot right now
windows 7 ipad facebook login nvidia geforce 9200 virgin media security iphone voip openoffice 3.3 vpn thin client cisco cloud computing rexspy skype facebook avg

Today's Topics

See what's hot today in our topics cloud
cyberattack content management delete six-core denial piracy trademark Xeon 5600 Silverlight Xeon 5500 Windows Phone Mono MIX10 Estonian CMS Apple iPhone
 
Powered by Ultra Knowledge

Techworld White Papers

Email archiving: Top 10 myths and challenges

This survey looks at a number of challenges and myths around email archiving that may also slow adoption of full archiving.

Download Whitepaper

Strategic mobile deployments

Deploying mobile applications? Supporting multiple devices? See why mobile platforms should be part of your IT strategy.

Download Whitepaper

Creating an AUP: Common myths & mistakes

Avoid the common myths & mistakes when implementing your AUP

Download Whitepaper

Legal risks of uncontrolled email and web use

Exploring the challenges facing IT Mangers today and vital steps to ensure safe internet an email use by employees.

Download Whitepaper

Techworld UK - Technology - Business

COLT White Paper

Virtualisation 2.0
Driving to higher ground beyond the basics

Virtualisation can deliver unparalleled efficiency and cost reductions to your business, allowing direct access to servers and guaranteeing a dependable, rapid response in times of crisis. Read this e-book to learn more about consolidation, discover the latest technologies and find out how to reduce the TCO of virtualisation.

Download E-Book
COLT White Paper

IT Misuse Survey

Complete this survey and you could win a Nexus One

Techworld are running a short survey to discover how UK businesses are managing Internet and email misuse in the Enterprise.

Complete Survey

Webcast: IT Financial Management: Cost Optimisation for Efficiency and Agility.
On Demand Webcast
Join this webcast to learn about the techniques and technologies that can help you prove the value of IT to the business by understanding the true cost of today's IT services and those that will be necessary to deliver future success.

Register Today