Two-factor authentication

Managing passwords to access corporate networks and services is one of the biggest problems for cybersecurity. In fact, a password that is too weak or hacked is enough to facilitate intrusions by cybercriminals.

We must also consider that hackers are experts in stealing login logins and related passwords with special malware called keyloggers that record anything we type on the keyboard. 

Often the problem also stems from poor data management by users who use the same password to access multiple services. The latter is a dangerous situation if we consider the frequent cases of data breaches with the theft of passwords that end up for sale on the dark web.

The first line of defense to keep intrusions out of the game is the use of secure passwords that must necessarily be protected by a two-factor authentication system (2FA), a technology that can protect any type of password. 2FA guarantees unassailable access: it is based on three elements and two of these are fundamental for access to the service.

The first element can be defined as “One thing you know”: it requires the classic login and password.

The second is identifiable as “One thing you have”: like a smartphone (which receives a code) or a security token that generates it.  The codes in question are called OTP (One Time Password) and are valid only once and for a limited period of time.

As an alternative to point two there is “One thing you are”: that is, the system that allows you to access with biometric data read by a smartphone such as fingerprint or face scan.

Without the second or third factor, which only the user who needs to log in has available, it is impossible to log in.

CHOOSE THE SOLUTION

HyperGrid can apply two-factor authentication to any customer need. For example, configure secure access to the corporate network, an online service, a website or software.

There are various solutions to receive the second authentication element in the most convenient way chosen by the customer: via SMS via a temporary OTP password, via OTP code generated by an app on the smartphone, or through a hardware token.

In addition, user access can be activated through face or fingerprint recognition.

Finally, for those who do not want (or cannot), use their smartphone for work, HyperGrid provides access via “direct phone call”. Thanks to this solution, the user who needs to access the network receives an automated call asking to authorize the connection simply by pressing a button on the phone.

HYPER VPN PLUS

HyperGrid‘s two-factor authentication system is also an integral part of the HyperVPN Plus service that provides a secure and encrypted connection to all users who connect remotely to the corporate network. The service creates a virtual tunnel in which data travels encrypted and secure. HyperVPN Plus is based on strong encryption protocols that make data traffic uninterceptable as well as prevent any unauthorized access.
In addition, the service can be configured with additional security options. For example, it is able to analyze if the operating system of the user who connects remotely is in the ideal conditions to be able to connect to the company network safely, that there is an active antivirus, that the file system of the computer is encrypted. If one (or more) of these parameters are not met, access will not be allowed. Obviously, the company will be free to decide whether to keep all the verification parameters active or whether to activate only those that it considers essential for its security. HyperVPN Plus provides many other options to activate according to customer needs, HyperGrid‘s team of experts will be able to advise you based on your real needs.