Cloud Single Sign-on: Does it threaten security?

In a recent article from TechTarget, “Cloud single sign-on adds convenience, but does it sacrifice security?” it discusses how now that the demand is to provide a seamless cloud experience for users, there are many risks to security. Do you agree with the article that a centralized secure point of control would answer the issues of multiple password prompts and security risks?

PortalGuard is proof that the answer is a resounding “Yes!” Using it’s SAML Identity Provider (IdP) functionality PortalGuard can enable single sign-on to your cloud/web-based applications through a single point of access. That point of access can then be secured using PortalGuard’s multiple authentication methods, including two-factor authentication and contextual authentication, plus maintain usability using the platform’s self-service password management.

###

The PortalGuard software is an authentication platform which is focused on enhancing usability, while maintaining a balance between security, auditing, and compliance for your web and desktop authentication requirements. PortalGuard provides capabilities including multi-factor authentication, self-service password reset, password synchronization and single sign-on which can be seamlessly configured by user, group, or application.

http://www.PortalGuard.com

Subscribe to our newsletter: http://portalguard.com/contact_us.php

https://twitter.com/portalguard

http://pinterest.com/pistolstar/portalguard

http://www.facebook.com/pistolstar.authentication

http://www.facebook.com/pages/PortalGuard/240761992635169

What You Need to Know About Two-factor Authentication?

I just stumbled across this article and thought it was useful in highlighting the basics of two-factor authentication. Many times with all of the solutions out there it is the basics that many forget. Also it does make me wonder is there a way to enhance two-factor authentication? Read More

###

The PortalGuard software is an authentication platform which is focused on enhancing usability, while maintaining a balance between security, auditing, and compliance for your web and desktop authentication requirements. PortalGuard provides capabilities including multi-factor authentication, self-service password reset, password synchronization and single sign-on which can be seamlessly configured by user, group, or application.

http://www.PortalGuard.com

Subscribe to our newsletter: http://portalguard.com/contact_us.php

https://twitter.com/portalguard

http://pinterest.com/pistolstar/portalguard

http://www.facebook.com/pistolstar.authentication

http://www.facebook.com/pages/PortalGuard/240761992635169

Reasons to Get Excited About Authentication

1. It provides a more secure environment for everyone.

2. Most people really don’t know about it.

3. It’s so pervasive in our everyday lives.

4. It’s such an integral part of our everyday lives and is a much needed area for new innovations.

5. It is something that is very important for companies to be aware of.

6. As more and more of our lives are reflected in a virtual space, i.e social networking, search queries, the need to prove and regulate your identity is of incredible, and increasing importance.

7. It can vary between being imperceptible, subtle, obvious or jarring depending on how it is implemented.

8. In a way, authentication is like a puzzle.

###

The PortalGuard software is an authentication platform which is focused on enhancing usability, while maintaining a balance between security, auditing, and compliance for your web and desktop authentication requirements. PortalGuard provides capabilities including multi-factor authentication, self-service password reset, password synchronization and single sign-on which can be seamlessly configured by user, group, or application.

http://www.PortalGuard.com

Subscribe to our newsletter: http://portalguard.com/contact_us.php

https://twitter.com/portalguard

http://pinterest.com/pistolstar/portalguard

http://www.facebook.com/pistolstar.authentication

http://www.facebook.com/pages/PortalGuard/240761992635169

Meet Gregg Browinski, Chief Technology Officer

Hobbies: Home improvement, single malt scotch, early American history, chess, golf (in a former life)

Pets: One middle-aged Rhodesian Ridgeback pooch named Wilson

On a Wed evening: I like to have dinner with my family, then sit with my wife and a glass of wine and listen to the boys and dog gleefully chase each other around the house.

Favorite color: Green

Favorite smell: Freshly sawn wood

Last book read: Cat in the Hat by Dr. Suess

Last grown-up book read: 1776 by David McCullough

I get excited about authentication because: It’s so pervasive in our everyday lives.  It can vary between being imperceptible, subtle, obvious or jarring depending on how it is implemented.

#1 Advice I would give to others about IT security: Don’t underestimate the importance of usability.  Poorly implemented solutions can lead to degradations in user satisfaction, adoption and efficiency.

###

The PortalGuard software is an authentication platform which is focused on enhancing usability, while maintaining a balance between security, auditing, and compliance for your web and desktop authentication requirements. PortalGuard provides capabilities including multi-factor authentication, self-service password reset, password synchronization and single sign-on which can be seamlessly configured by user, group, or application.

http://www.PortalGuard.com

Subscribe to our newsletter: http://portalguard.com/contact_us.php

https://twitter.com/portalguard

http://pinterest.com/pistolstar/portalguard

http://www.facebook.com/pistolstar.authentication

http://www.facebook.com/pages/PortalGuard/240761992635169

Seven High-Profile Breaches Which Remind Us of Password Protection…

In a recent article there has been an alarming amount of high-profile security breaches in July this year. Although each situation was different it seems that the “good” security practices which were put in place were not enough to stop intruders. In most of these cases the resolution as put on the users to change their passwords, avoid sharing credentials, etc. Essentially their solution was to increase security awareness…which seems faulty. Read More

###

The PortalGuard software is an authentication platform which is focused on enhancing usability, while maintaining a balance between security, auditing, and compliance for your web and desktop authentication requirements. PortalGuard provides capabilities including multi-factor authentication, self-service password reset, password synchronization and single sign-on which can be seamlessly configured by user, group, or application.

http://www.PortalGuard.com

Subscribe to our newsletter: http://portalguard.com/contact_us.php

https://twitter.com/portalguard

http://pinterest.com/pistolstar/portalguard

http://www.facebook.com/pistolstar.authentication

http://www.facebook.com/pages/PortalGuard/240761992635169

FBI Report: “Internet Social Networking Risks”

The FBI recently published a report, “Internet Social Networking Risks”, warning of the dangers posed by social networking sites, exploited by digital con artists, criminals and other dishonest actors. Computer hackers specialize in writing and manipulating computer code to gain access or install software on computers and phones. Social hackers (sometimes referred to as “social engineers”) specialize in exploiting personal connections through social networks. The report highlighted the following tactics: Baiting, Click-jacking, Cross-Site Scripting (XSS), Doxing, Pharming, Phishing, Phreaking, Scams and Spoofing. Read More

The following Educational Resources were also recommended:

www.LooksTooGoodToBeTrue.com

www.OnGuardOnline.gov

www.us-cert.gov

www.ic3.gov

www.dhs.gov

www.ftc.gov

www.fbi.gov

###

The PortalGuard software is an authentication platform which is focused on enhancing usability, while maintaining a balance between security, auditing, and compliance for your web and desktop authentication requirements. PortalGuard provides capabilities including multi-factor authentication, self-service password reset, password synchronization and single sign-on which can be seamlessly configured by user, group, or application.

http://www.PortalGuard.com

Subscribe to our newsletter: http://portalguard.com/contact_us.php

https://twitter.com/portalguard

http://pinterest.com/pistolstar/portalguard

http://www.facebook.com/pistolstar.authentication

http://www.facebook.com/pages/PortalGuard/240761992635169

HIPAA Breaches Show a Need for Multi-Layered Security

Highlighting two HIPAA security breaches, Insurance News concludes that solutions to these incidents are going to need to be multi-layered security programs. One incident involved thousands of Medicaid and Children’s Health Insurance Plan recipients, whose social security numbers were compromised.

HIPAA is now being argued as “not enough” to keep hackers at bay. Simply implementing the regulations does not mean you are taking the necessary steps needed to prevent a data breach.

“Management must make security a priority and mandate a risk-based program, supported by policies and enforced with strong controls,” Neil Roiter says, research director with Corero Network Security. Read More

10 Tips for Maintaining IT Security from the PortalGuard Team

1. Security is a rapidity evolving area. If you are not looking at the latest security advancements then you are at a high risk for being ‘behind the curve’ and someone’s next target.

2. Information is literally everything. Treat it as you would your most prized possessions!

3. Stay current! Educate yourself or talk to others who may know more than you. Technology is always changing and it is crucial to stay on top of these changes.

4. Yikes! Social media!….remember….everything is public. Information on many people’s social pages contain valuable security information which could allow potential hackers an easy opportunity to steal your identity, password, etc.

5. What you don’t know, can hurt you.

6. Don’t take security for granted.

7. Don’t underestimate the importance of usability. Poorly implemented solutions can lead to degradations in user satisfaction, adoption and efficiency.

8. Remember to keep your credentials safe. Never share your username or password and more specifically….do not write them down.

9. Be aware of your surroundings when logging in. If you are in a vulnerable location (such as an airport) there could be malicious networks available which hackers are just waiting for you to join.

10. Use common sense….

###

The PortalGuard software is an authentication platform which is focused on enhancing usability, while maintaining a balance between security, auditing, and compliance for your web and desktop authentication requirements. PortalGuard provides capabilities including multi-factor authentication, self-service password reset, password synchronization and single sign-on which can be seamlessly configured by user, group, or application.

http://www.PortalGuard.com

Subscribe to our newsletter: http://portalguard.com/contact_us.php

https://twitter.com/portalguard

http://pinterest.com/pistolstar/portalguard

http://www.facebook.com/pistolstar.authentication

http://www.facebook.com/pages/PortalGuard/240761992635169

N.H. Insurance Agency Faces Possible Data Breach

NH Public Risk Management Exchange : PrimexAfter learning that their now bankrupt third-party vendor had lost an external hard drive and backup containing personal information of thousands of people, Primex is left trying to control the breach and understand who was affected. The information which was possibly stolen was over 14,000 worker’s compensation and automobile liability claimants’ social security numbers, addresses, and more. It seems the resolution at the current moment is to trust that the thieves cannot access the stolen hardware…however this is not a 100% guarantee. Read More

5 Business Trends Driving IAM Spending

With recent breaches in the news and the changes to user scenarios, such as now having roaming users on iPads, organizations seem to be more concerned with IAM. I found this article interesting as it outlined 5 trends which are driving the spending for organizations in the IAM space. These include:

1. Cloud Adoption

2. BYOD and Mobile

3. User Productivity

4. Empowering Contextual Security

5. Governance and Compliance

These 5 resonate with us here at PortalGuard, especially the focus on Contextual Security, as the PortalGuard platform provides this using Contextual Authentication as a method for authenticating users. The article argues in favor of Contextual, “The only way to provide appropriate security while also permitting the convenience and fluidity of movement that today’s business demands is by having a solid understanding of who it is that is trying to access your data and resources” Read More

###

The PortalGuard software is an authentication platform which is focused on enhancing usability, while maintaining a balance between security, auditing, and compliance for your web and desktop authentication requirements. PortalGuard provides capabilities including multi-factor authentication, self-service password reset, password synchronization and single sign-on which can be seamlessly configured by user, group, or application.

http://www.PortalGuard.com

Subscribe to our newsletter: http://portalguard.com/contact_us.php

https://twitter.com/portalguard

http://pinterest.com/pistolstar/portalguard

http://www.facebook.com/pistolstar.authentication

http://www.facebook.com/pages/PortalGuard/240761992635169