Grid Cards – MFA without the technical overhead - Security Boulevard

2 years ago 54

This is portion 4 of our MFA blog bid for Cybersecurity Awareness Month. You tin work up connected blog 1 here, blog 2 here, and blog 3 here.

We already cognize the value of multi-factor authentication (MFA) to unafraid entree to resources for users successful a satellite wherever passwords are the azygous largest onslaught vector. In a caller study, it was recovered that 81% of hacking-related breaches leveraged either stolen and/or anemic passwords.

When reasoning astir MFA, galore radical automatically deliberation astir utilizing mobile propulsion notifications, SMS 1 clip passcodes (OTP), and different mobile-centric authentication methods. But what astir erstwhile frontline oregon tract employees request entree to captious resources and systems and don’t person entree to a mobile instrumentality oregon wherever mobile devices are not allowed owed to the delicate quality of the information being accessed? Here are immoderate scenarios wherever the usage of mobile devices is not feasible:

  • Outsourced telephone centers with employees accessing systems connecting to delicate information wrong your enactment similar lawsuit PII.
  • Part-time lawsuit work employees that grip captious lawsuit information successful bid to supply a idiosyncratic with effectual lawsuit support.
  • Military tract unit that cannot usage physics forms of authentication owed to the anticipation of transmission interception.
  • Mobile exigency workers successful exigency situations and it is not convenient oregon imaginable to transportation mobile devices.

How bash you alteration MFA for these employees?

One mode is the usage of Physical keys similar FIDO keys. But these tin beryllium to beryllium excessively costly and inefficient to support. Keys tin beryllium mislaid oregon damaged and person to beryllium replaced. When employees discontinue oregon caller employees join, they request to beryllium wiped and reconfigured.

What are Grid cards and however bash they work?

Grid cards are an casual to usage and outgo effectual mode to supply MFA for users that cannot usage mobile devices to log successful to the required systems and applications. The Entrust Grid Card is simply a paper-based paper that tin beryllium printed from a PDF record and contains a grid of rows and columns that dwell of numbers and characters. As portion of the MFA process, users are presented with a coordinate situation and indispensable respond with the accusation successful the corresponding cells from the unsocial paper that they possess.

In the illustration grid paper below, a idiosyncratic is presented with an authentication situation erstwhile trying to log successful to a restricted resource, specified arsenic an exertion oregon service, and indispensable supply the accusation successful compartment E5. The accusation successful compartment E5 is “X7”. The idiosyncratic tin participate this accusation to implicit the MFA situation and summation entree to the required resource.

The fig of cells and fig of characters wrong each compartment is configurable. Cells tin beryllium configured to expire aft azygous use, oregon the situation mechanics tin beryllium configured to usage a least-used compartment attack to forestall attackers who whitethorn person gained entree to antecedently utilized cells to correctly respond to the challenge. The wide grid paper tin besides beryllium configured to person an expiry date.

When needed to beryllium replaced, these grid cards tin easy beryllium generated and provided to employees successful the signifier a of a printable pdf for casual and unafraid distribution.

With the usage of this elemental low-tech, debased cost, unafraid MFA authenticator, you tin present enactment distant tract and frontline unit with an casual to use, beardown multi-factor authentication (MFA). Get the bid of caput of a beardown MFA without the overhead that comes with supporting it. Learn much astir grid cards here.

The station Grid Cards – MFA without the method overhead appeared archetypal connected Entrust Blog.

*** This is simply a Security Bloggers Network syndicated blog from Entrust Blog authored by Rohan Ramesh. Read the archetypal station at: https://www.entrust.com/blog/2022/10/grid-cards-mfa-without-the-technical-overhead/

Read Entire Article