Educause Security Discussion mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Two-Factor Authentication: Quick Poll

From: Rich Graves <rgraves () CARLETON EDU>
Date: Thu, 1 Mar 2012 10:57:00 -0600
1 Is your campus using, or does it plan to use, Two-Factor authentication for its most privileged users (e.g., system 
administrators logging in remotely)? 


Followup discussion has made it clear that you need to define "remotely."

If you define "remotely" as "from outside the campus or internal firewall boundary," yes, we are mostly there.

For internal network access, passwords win, due to limitations mentioned by Joel and others.

A GULP-like system is important regardless of the meaning of "remotely." We are also getting better at separating the 
everyday password (subject to phishing and malware) from privileged logons.


2 Do you think you should? 


Yes.
Previous By Date Next
Previous By Thread Next

Current thread: