Neuware - Passwords are not enoughA password is a single authentication factor - anyone who has it can use it. No matter how strong it is, if it's lost or stolen, it's entirely useless at keeping information private.To secure your data properly, you also need to use a separate, secondary authentication factor.Data breaches are now commonplaceIn recent years, large-scale data breaches have increased dramatically in both severity and number, and the loss of personal information - including password data - has become commonplace.Furthermore, the fact that rapidly evolving password-cracking technology and the habitual use - and reuse - of weak passwords has rendered the security of username and password combinations negligible, and you have a very strong argument for more robust identity authentication.Consumers are beginning to realise just how exposed their personal and financial information is, and are demanding better security from the organisations that collect, process and store it. This has led to a rise in the adoption of two-factor authentication (TFA or 2FA).In the field of authentication security, the method of proving identity can be broken down into three characteristics - roughly summarised as 'what you have', 'what you are' and 'what you know'. Two-factor authentication relies on the combination of two of these factors.Product overviewTFA is nothing new. It's mandated by requirement 8.3 of the Payment Card Industry Data Security Standard (PCI DSS) and banks have been using it for years, combining payment cards ('what you have') and PINs ('what you know'). If you use online banking you'll probably also have a chip authentication programme (CAP) keypad, which generates a one-time password (OTP).What is new is TFA's rising adoption beyond the financial sector.Two-Factor Authentication provides a comprehensive evaluation of popular secondary authentication methods, such as:Hardware-based OTP generationSMS-based OTP deliveryPhone call-based mechanismsGeolocation-aware authenticationPush notification-based authenticationBiometric authentication factorsSmart card verificationAs well as examining MFA (multi-factor authentication), 2SV (two-step verification) and strong authentication (authentication that goes beyond passwords, using security questions or layered security), the book also discusses the wider application of TFA for the average consumer, for example at such organisations as Google, Amazon and Facebook. It also considers the future of multi-factor authentication, including its application to the Internet of Things (IoT).Increasing your password strength will do absolutely nothing to protect you from online hacking, phishing attacks or corporate data breaches. If you're concerned about the security of your personal and financial data, you need to read this book.About the authorMark Stanislav is an information technology professional with over a decade's varied experience in systems administration, web application development and information security. He is currently a senior security consultant for the Strategic Services team at Rapid7.Mark has spoken internationally at nearly 100 events, including RSA, DEF CON, SecTor, SOURCE Boston, ShmooCon and THOTCON. News outlets such as the Wall Street Journal, Al Jazeera America, Fox Business, MarketWatch, CNN Money, Yahoo Finance, Marketplace and The Register have featured Mark's research, initiatives and insights on information security.

Seller Inventory # 9781849287326

Contact seller

Report this item

Bibliographic Details

Title: Two-Factor Authentication
Publisher: IT Governance Publishing Apr 2015
Publication Date: 2015
Language: English
ISBN 10: 1849287325
ISBN 13: 9781849287326
Binding: Taschenbuch
Condition: Neu
Dimensions: 200 millimeters width by 130 millimeters height by 11 millimeters depth
Weight: 130 grams

About this title

Synopsis

Passwords are not enough A password is a single authentication factor - anyone who has it can use it. No matter how strong it is, if it's lost or stolen, it's entirely useless at keeping information private. To secure your data properly, you also need to use a separate, secondary authentication factor. Data breaches are now commonplace In recent years, large-scale data breaches have increased dramatically in both severity and number, and the loss of personal information - including password data - has become commonplace. Furthermore, the fact that rapidly evolving password-cracking technology and the habitual use - and reuse - of weak passwords has rendered the security of username and password combinations negligible, and you have a very strong argument for more robust identity authentication. Consumers are beginning to realise just how exposed their personal and financial information is, and are demanding better security from the organisations that collect, process and store it. This has led to a rise in the adoption of two-factor authentication (TFA or 2FA). In the field of authentication security, the method of proving identity can be broken down into three characteristics - roughly summarised as 'what you have', 'what you are' and 'what you know'. Two-factor authentication relies on the combination of two of these factors. Product overview TFA is nothing new. It's mandated by requirement 8.3 of the Payment Card Industry Data Security Standard (PCI DSS) and banks have been using it for years, combining payment cards ('what you have') and PINs ('what you know'). If you use online banking you'll probably also have a chip authentication programme (CAP) keypad, which generates a one-time password (OTP). What is new is TFA's rising adoption beyond the financial sector. Two-Factor Authentication provides a comprehensive evaluation of popular secondary authentication methods, such as: Hardware-based OTP generation SMS-based OTP delivery Phone call-based mechanisms Geolocation-aware authentication Push notification-based authentication Biometric authentication factors Smart card verification As well as examining MFA (multi-factor authentication), 2SV (two-step verification) and strong authentication (authentication that goes beyond passwords, using security questions or layered security), the book also discusses the wider application of TFA for the average consumer, for example at such organisations as Google, Amazon and Facebook. It also considers the future of multi-factor authentication, including its application to the Internet of Things (IoT). Increasing your password strength will do absolutely nothing to protect you from online hacking, phishing attacks or corporate data breaches. If you're concerned about the security of your personal and financial data, you need to read this book. About the author Mark Stanislav is an information technology professional with over a decade's varied experience in systems administration, web application development and information security. He is currently a senior security consultant for the Strategic Services team at Rapid7. Mark has spoken internationally at nearly 100 events, including RSA, DEF CON, SecTor, SOURCE Boston, ShmooCon and THOTCON. News outlets such as the Wall Street Journal, Al Jazeera America, Fox Business, MarketWatch, CNN Money, Yahoo Finance, Marketplace and The Register have featured Mark's research, initiatives and insights on information security.

About the Author

Mark Stanislav is an information technology professional with over a decade’s varied experience in systems administration, web application development and information security. He is currently a senior security consultant for the Strategic Services team at Rapid7.

Mark has spoken internationally at nearly 100 events, including RSA, DEF CON, SecTor, SOURCE Boston, ShmooCon, and THOTCON. News outlets such as the Wall Street Journal, Al Jazeera America, Fox Business, MarketWatch, CNN Money, Yahoo Finance, Marketplace, and The Register have featured Mark’s research, initiatives, and insights on information security.

Mark earned both his Bachelor of Science Degree in Networking & IT Administration and his Master of Science Degree in Technology Studies, focused on Information Assurance, from Eastern Michigan University. He also holds CISSP, Security+, Linux+, and CCSK certifications.

"About this title" may belong to another edition of this title.

Store Description

Das Unternehmen AHA-BUCH GmbH: Seit der Gr�ndung von AHA-BUCH im Juli 2005 ist unser Hauptziel, zufriedenen Kunden so schnell und so preisg�nstig wie m�glich ihren B�cherwunsch zu erf�llen. Unsere Firma besch�ftigt 16 Mitarbeiter, die nur ein Ziel kennen: den Kunden und seine W�nsche! Auf �ber 3700 m2 Fl�che haben wir �ber 100.000 B�cher, Modernes Antiquariat und Spiele auf Lager.

Visit Seller's Storefront

Seller's business information

AHA-BUCH GmbH
Garlebsen 48, Einbeck, 37574, Germany

Sale & Shipping Terms

Terms of Sale

General Terms and Conditions and Customer Information / Privacy Policy

I. General Terms and Conditions

� 1 Basic provisions

(1) The following terms and conditions apply to all contracts that you conclude with us as a provider (AHA-BUCH GmbH) via the Internet platforms AbeBooks and/or ZVAB. Unless otherwise agreed, the inclusion of any of your own terms and conditions used by you will be objected to

(2) A consumer within the meaning of the following regulations is any natural person who concludes...

More Information

Right of cancellation

**Right of withdrawal for consumers **

(A consumer is any natural person who concludes a legal transaction for purposes that can predominantly be attributed neither to their commercial nor their independent professional activity.)

Cancellation
Withdrawal
You have the right to revoke this contract within fourteen days without giving reasons.
The revocation period is fourteen days from the day,

on which you or a third party named by you, who is not the carrier, has taken possession of the goods, provided that you have ordered one or more goods within the framework of a uniform order and these are or will be delivered uniformly;
on which you or a third party named by you, who is not the carrier, has taken possession of the last goods, provided that you have ordered several goods within the framework of a single order and these are delivered separately;
on which you or a third party named by you, who is not the carrier, has taken possession of the last partial shipment or the last piece, provided that you have ordered goods that are delivered in several partial shipments or pieces;

In order to exercise your right of withdrawal, you must inform us (AHA-BUCH GmbH, Garlebsen 48, 37574 Einbeck, telephone number: 05563 9996039, fax number: 05563 9995974, e-mail address: service@aha-buch.de) of your decision to revoke this contract by means of a clear declaration (e.B. a letter sent by post, fax or e-mail). You can use the attached model withdrawal form, but this is not mandatory.

To comply with the revocation period, it is sufficient that you send the notification of the exercise of the right of revocation before the expiry of the revocation period.

Consequences of revocation

If you withdraw from this contract, we shall reimburse you all payments that we have received from you, including delivery costs (with the exception of the additional costs resulting from the fact that you have chosen a different type of delivery than the cheapest standard delivery offered by us), immediately and at the latest within fourteen days from the day on which we received the notification of your revocation of this contract.
For this repayment, we will use the same means of payment that you used for the original transaction, unless expressly agreed otherwise with you; in no case will you be charged any fees for this repayment.

We may withhold reimbursement until we have received the goods back or until you have provided proof that you have returned the goods, whichever is the earlier.

You must return or hand over the goods to us immediately and in any case at the latest within fourteen days from the day on which you inform us of the revocation of this contract. The deadline is met if you send the goods before the expiry of the period of fourteen days.

You bear the direct costs of returning the goods.

You only have to pay for any loss of value of the goods if this loss of value is due to handling of the goods that is not necessary to check the nature, characteristics and functioning of the goods.

Reasons for exclusion or extinction

The right of revocation does not apply to contracts

for the delivery of goods which are not prefabricated and for the manufacture of which an individual choice or determination by the consumer is decisive or which are clearly tailored to the personal needs of the consumer;
for the delivery of goods that can spoil quickly or whose expiry date would be exceeded quickly;
for the delivery of alcoholic beverages, the price of which was agreed at the time of conclusion of the contract, but which can be delivered at the earliest 30 days after conclusion of the contract and whose current value depends on fluctuations in the market over which the entrepreneur has no influence;
for the delivery of newspapers, magazines or magazines with the exception of subscription contracts.

The right of revocation expires prematurely in the case of contracts

for the delivery of sealed goods that are not suitable for return for reasons of health protection or hygiene, if their seal has been removed after delivery;
for the delivery of goods if they have been inseparably mixed with other goods after delivery due to their nature;
for the delivery of sound or video recordings or computer software in a sealed package, if the seal has been removed after delivery.

Sample withdrawal form

(If you want to cancel the contract, please fill out this form and send it back.)

To AHA-BUCH GmbH, Garlebsen 48, 37574 Einbeck, fax number: 05563 9995974, e-mail address: service@aha-buch.de :
I/we () hereby revoke the contract concluded by me/us () for the purchase of the following goods ()/
the provision of the following service ()
Ordered on ()/ received on ()
Name of the consumer(s)
Address of the consumer(s)
Signature of the consumer(s) (only in case of notification on paper)
Date

(*) Delete as appropriate.

Shipping Terms

We ship your order after we received them
for articles on hand latest 24 hours,
for articles with overnight supply latest 48 hours.
In case we need to order an article from our supplier our dispatch time depends on the reception date of the articles, but the articles will be shipped on the same day.

Our goal is to send the ordered articles in the fastest, but also most efficient and secure way to our customers.

Shipping rates from Germany to U.S.A.

Shipping rates from Germany to U.S.A.
Order quantity	30 to 40 business days	7 to 14 business days
First item	� 52.53	� 61.19

Delivery times are set by sellers and vary by carrier and location. Orders passing through Customs may face delays and buyers are responsible for any associated duties or fees. Sellers may contact you regarding additional charges to cover any increased costs to ship your items.

Detailed Seller Information