Two-factor Authentication (-) - Softcover

Über die Autorin bzw. den Autor

Mark Stanislav is an information technology professional with over a decade’s varied experience in systems administration, web application development and information security. He is currently a senior security consultant for the Strategic Services team at Rapid7.

Mark has spoken internationally at nearly 100 events, including RSA, DEF CON, SecTor, SOURCE Boston, ShmooCon, and THOTCON. News outlets such as the Wall Street Journal, Al Jazeera America, Fox Business, MarketWatch, CNN Money, Yahoo Finance, Marketplace, and The Register have featured Mark’s research, initiatives, and insights on information security.

Mark earned both his Bachelor of Science Degree in Networking & IT Administration and his Master of Science Degree in Technology Studies, focused on Information Assurance, from Eastern Michigan University. He also holds CISSP, Security+, Linux+, and CCSK certifications.

Von der hinteren Coverseite

Passwords are not enough

A password is a single authentication factor – anyone who has it can use it. No matter how strong it is, if it’s lost or stolen it’s entirely useless at keeping private information private.In recent years, large-scale data breaches have increased dramatically in both severity and number, and the loss of personal information – including password data – has become commonplace.

Add to this the fact that rapidly evolving password-cracking technology and the habitual use – and reuse – of weak passwords has rendered the security of username and password combinations negligible, and you have a very strong argument for two-factor authentication (TFA or 2FA).

Two-Factor Authentication evaluates popular secondary authentication methods such as hardware-based one-time password (OTP) generation, SMS-based OTP delivery, phone call-based mechanisms, geolocation-aware authentication, push notification-based authentication, biometric authentication factors and smart card verification, as well as MFA (multi-factor authentication), 2SV (two-step verification) and strong authentication (authentication that goes beyond passwords, using security questions or layered security).

Increasing your password strength will do absolutely nothing to protect you from online hacking, phishing attacks or corporate data breaches. To secure your data properly, you also need to use a separate, secondary authentication factor. If you’re concerned about the security of your personal and financial data, you need to read this book.

About the author

Mark Stanislav has over a decade’s varied experience in systems administration, web application development and information security. A senior security consultant for the Strategic Services team at Rapid7, Mark has spoken internationally at nearly 100 events, including RSA, DEF CON, SecTor, SOURCE Boston, ShmooCon, and THOTCON, and has featured in news media including the Wall Street Journal, Al Jazeera America, Fox Business and CNN Money. Mark holds CISSP, Security+, Linux+, and CCSK certifications.