authentication

Businesses also gain a new Android app management and provisioning tool

Last year, administrators in the City of Winter Park, Fla., realized they had a serious compliance risk in their police department. The FBI's Criminal Justice Information Services Division has regulations that call for tight access controls for records. However, many officers share workstations and, therefore, also share passwords. The solution, they realized, was to deploy fingerprint scanners that would enable individual authentication.

VMware Horizon App Manager will provice a single sign on for all of an organization's cloud applications

Company exec warns customers that stolen information could be used to more easily penetrate customers' systems.

Google is expanding the use of two-step verification to include all Google accounts. The security measure--implemented for Google Apps customers a few months ago--protects your Google account from being hijacked or compromised.

Holes are opening all over enterprise IT infrastructures, which rely on end-users' memories, not good systems, for good authentication plans.

Privileged identity management (PIM) products automate control over administrative accounts, which typically put too much power in too many people's hands with too little accountability. They address the security, operational and compliance issues posed by the widely shared administrative accounts and passwords, excessive administrative rights, poor separation of duties, embedded passwords in legacy applications and scripts, and poor or nonexistent privileged-password rotation. They also provide individual accountability and an audit trail to prove that policies and controls are actually being enforced.

Symantec will pay US$1.28 billion to acquire VeriSign's security business.

Increasingly, whether due to regulatory requirements or a basic recognition that static passwords just don't provide adequate security, organizations are implementing some form of strong authentication. Like all new efforts, before you start you want to be reasonably assured that you will succeed. In this tutorial we will document how to add two-factor authentication to various Microsoft remote access solutions through the Windows Server 2008 Network Policy Server. For two-factor authentication, we will be using the WiKID Strong Authentication Server - Enterprise Edition. WiKID is a dual-sourced, software-based two-factor authentication system. While the document is product specific, the process is typically the same no matter the products.

For years, leaders of the security industry have warned that passwords have outlived their usefulness. Users pick easy-to-crack passwords like the name of a dog or a favorite movie. They're written on post-it notes and left sticking to the monitor for all to see.

At Digital ID World 2009, a Facebook platform engineer says social networking sites can be used to actually improve identity and access management. Why wasn't he laughed off stage by the skeptical security crowd before him? Read on.

While most IT network professionals report modest cutbacks in spending this year vs. last year, they seem optimistic that will change for the better next year, according to an early look at an ongoing study from The Info Pro consultancy.