The Need for Strong Authentication in Today’s Enterprise

September 1, 2014

Users are increasingly distributed, mobile and varied, requiring enterprises to take a new look at how to establish trust in a user’s identity and control their access accordingly. In the past, most focused on perimeter defenses, putting controls in place to determine who could enter the building, with physical access systems, and who could get into the network, with firewalls and VPNs. Once inside, however, users had fairly unfettered access to all the applications and resources in these facilities and networks.

Now, recognizing the threats from users “inside their walls” – 81% of organizations have experienced a data breach as a result of negligent or malicious employees or other insiders – and watching the walls, themselves, crumble, because of the dynamic, global nature of today’s businesses, many enterprises are re-evaluating their approach to access.

If you are like most enterprises, you are struggling to simultaneously accommodate all the different needs of all your different users AND minimize the risks their access can pose to your organization, which is complicated by the ever-changing threat landscape. Attacks continue to evolve and become progressively sophisticated, as evidenced by the rise of advanced persistent threats (APTs) that use customized malware to conduct targeted, long-term attacks on an organization. At the same time, users, who need access to information and resources, are expanding beyond employees to include a wide variety of consultants, contractors, vendors, partners, suppliers, and customers.

Users want to be able to access what they need from wherever they are, using whatever device they want, including their personal phones, laptops and tablets (BYOD). These variables can increase risks to your environment if you are not careful. What’s needed is a way to trust the identity of all these different users and then appropriately control their access as they move throughout the organization.

Applying strong authentication to each application is one of the most effective ways you can enable the productivity your business requires, while reducing the risks to your organization. By securing the individual enterprise and cloud-based applications and data resources, whether they are on a laptop or mobile phone, you can effectively manage access and secure your informational assets.

Visit www.hidglobal.com for more information.

You must login or register in order to post a comment.

ON DEMAND: DevSecOps creates an environment of shared responsibility for security, where AppSec and development teams become more collaborative. With the right training and tools, developers can become more hands-on with security and, with that upskilling, stand out among their peers... however, they need the security specialists on-side, factoring them into securing code from the start and championing this mindset across the company.

ON DEMAND: The insider threat—consisting of scores of different types of crimes and incidents—is a scourge even during the best of times. But the chaos, instability and desperation that characterize crises also catalyze both intentional and unwitting insider attacks. Learn how your workers, contractors, volunteers and partners are exploiting the dislocation caused by today's climate of Coronavirus, unemployment, disinformation and social unrest.

Security Magazine

2020 October

This month in Security magazine, we explore how Corning's global security group ensured business continuity and employee safety during the global COVID-19 pandemic. Also, we highlight the global security team at Uber and their recent security programs and initiatives. Industry experts discuss travel safety programs, career hackers, working for terrible bosses, group attribution error and more.

View More Create Account

The Need for Strong Authentication in Today’s Enterprise

Report Abusive Comment

Security Magazine

2020 October