Advertisement
Promo

Security threats Toolkit

Security guru demands two-factor authentication

Dan Ilet ZDNet.co.uk

Published: 03 Nov 2004 17:58 GMT

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Howard Schmidt, the chief security officer for eBay and former White House adviser for cyberspace has called for greater use of two-factor authentication.

Speaking at a press briefing in Barcelona on Wednesday, Mr Schmidt said that businesses had clearly improved security practice, but that the technology is now available for them to use two-factor authentication -- where users must supply two forms of identification.

"We're doing better security now, but we still depend on usernames and passwords as a way of getting online. We now have the technology for the end-user to have two-factor authentication. We expect to see security grow and be federated," said Schmidt, adding that people had to accept the need to supply more credentials.

Schmidt gave the example of how AOL was issuing two-factor Secure-ID tokens to many of its users. He said that bank cards were also a good example of authentication: "They are something you have -- the card -- and something you know -- the PIN."

RSA announced at the conference that one-third of companies were failing to implement security updates properly.

"You would have thought that security would be one of the first items on the board agenda," said Tim Pickard, RSA's marketing director.

"CIOs and IT directors must start to take a holistic approach to securing their organisation rather than reacting with point-solutions every time there is a specific threat," Pickard added.

But Schmidt turned this claim on its head, saying RSA's results were actually positive news.

"To me that's a good thing because two-thirds are [taking it seriously]. The security process is becoming part of the business process. There's been a change that has taken place," Schmidt said.

Schmidt added that 'co-opertition' -- a new term that means networking between competitors -- was helping to improve the spread of information and speed up companies' reaction time to incidents.

"We've seen gangs of hackers going to organised crime to send phishing emails to an unsuspecting public," he said. "I thought [co-opertition] was one of the stupidest words I had heard. But now we have mechanisms where we can contact security folk all around the world around the world. If [someone] hosts a phishing site, we can reduce the time in which someone can become a victim."

  • Email
  • Trackback
  • Clip Link
  • Print friendlyPrint with EPSON

Did you find this article useful?
71 out of 132 people found this useful


In association with Network Liberation Movement

Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In Security threats



Company/Topic Alerts

Create a new alert from the list below:





Related Jobs

Supply Chain Management Architect - SCM / Sterling Architect

Java Developer. Supply Chain

Technical Support Consultant

Related BlackBerry Resources

Protecting the BlackBerry Device Platform Against Malware

BlackBerry Devices with Bluetooth - Security Overview

BlackBerry Enterprise Server IT Policy

BlackBerry Enterprise Solution - Security Technical Overview

BlackBerry Enterprise Solution and RSA SecurID

CIO's Guide to Mobile Security

See All White Papers

Video icon

Video

Sentry Posts Blog

DNA details of innocent will be kept f...

The government has announced that it plans to keep innocent people's DNA details for up to six years. In response to a consultation it launched last December, the government said... More

5 comments

Motorola Droid Drops Today: Happy Droi...

Motorola Droid Drops Today: Happy Droid Day America! Author: Eric Everson, Mobile Security Expert If you’re wondering what all of the buzz is about with words like Droid and Android... More

Post a comment

Mobile Security Profile: BlackBerry St...

Mobile Security Profile: BlackBerry Storm2 Author: Eric Everson BlackBerry handsets are a staple of office culture; from syncing calendars to sharing business-related data,... More

Post a comment


Skip Sub Navigation Links to CNET Brand Links

Help

Become part of the ZDNet community.

ALL TOOLKITS

Blogs

Newsletters