The WiKID Blog | WiKID Systemshttp://www.wikidsystems.com/blog/2017-04-04T20:00:58+00:00The WiKID Blog, musings on two-factor authentication, information security and some other stuff.PCI DSS disses multi-step authentication2017-04-04T20:00:58+00:00roothttp://www.wikidsystems.com/blog/author/root/http://www.wikidsystems.com/blog/pci-dss-disses-multi-step-authentication/<p>The PCI Council has published an <a href="https://www.pcisecuritystandards.org/pdfs/Multi-Factor-Authentication-Guidance-v1.pdf">"Information Supplement" on multi-factor authentication</a> (pdf). The document that multi-step and mutl-factor authentication are not the same and that the former is not acceptable. </p>
<blockquote>
<p>PCI DSS requires that all factors in multi-factor authentication be verified prior to the authentication mechanism granting the requested access. Moreover, no prior knowledge of the success or failure of any factor should be provided to the individual until all factors have been presented.<br/><snip><br/>For example, if an individual submits credentials (e.g., username/password) that, once successfully validated, lead to the presentation of the second factor for validation (e.g., biometric), this would be considered “multi-step” authentication.</p>
</blockquote>
<p>If this is the way you're doing your authentication with a service or using Google Authenticator, then it's probably time to re-think that (in addition to <a href="http://www.wikidsystems.com/blog/5-issues-enterprises-should-consider-before-using-google-authenticator-for-ssh/">other issues with Google Authenticator</a>). WiKID's authentication process is true multi-factor, easy to integration into a one-step authentication process and it can perform <a href="http://www.wikidsystems.com/blog/non-console-administrative-access/">2FA for non-console administrative access</a> as required by <a href="https://www.pcisecuritystandards.org/documents/PCI_DSS_v3-2.pdf">PCI 3.2</a> (pdf). </p>How to add WiKID two-factor authentication to an Aruba Networks Via VPN solution2016-07-07T14:47:27+00:00roothttp://www.wikidsystems.com/blog/author/root/http://www.wikidsystems.com/blog/how-to-add-wikid-two-factor-authentication-to-an-aruba-networks-via-vpn-solution/<p>Check out this great video on how to add WiKID two-factor authentication to an HPE/Aruba Networks Via VPN: <a href="https://www.youtube.com/watch?v=hcHXwND301U&feature=youtu.be" title="WiKID 2FA and Aruba VIA VPN">https://www.youtube.com/watch?v=hcHXwND301U&feature=youtu.be</a></p>
<p>Martin was able to use our <a href="http://www.wikidsystems.com/downloads/wikid-strong-authentication-system-enterprise/">free evaluation of the WiKID server</a> to get everything up and tested before purchasing.</p>
<p> </p>