Cloud is a great thing to have, an endless source of computing power at anyone’s finger tips, a relentless work horse on which to offload nearly any task, at any time and from anywhere. But as it goes with basically anything in IT landscape, cloud is not a silver bullet for everything and your corporate identity might be one such, what the recent Azure MFA downtime demonstrates.
RCDevs has released a new OpenOTP version supporting the FIDO2 authentication standard in addition to the previously supported FIDO1/U2F.
FIDO2 builds on and improves U2F by incorporating the World Wide Web Consortium’s (W3C) webAuthn standard. This will further improve the browser compatibility and provide support for PIN codes, biometric identification and password-less login.
The U.S. Monday joined Russia, North Korea and China in declining to sign a cybersecurity pact supported by 50 countries and aimed at fighting both cyberwarfare and cybercrime.
The Paris Call for Trust and Security in Cyberspace agreement, part of the Paris Peace Forum, seeks to create a cyber Geneva Conventions of sorts, laying out international laws and guidelines for cyberwarfare as well as support human rights online. It was signed by 90 charities and universities as well as more than 150 tech companies, including Google, Microsoft, IBM and Facebook.
Meeting partners and clients at RCDevs Afterwork. RCDevs CEO Charly Rohart giving a presentation to a full house on latest trends in of Multi-Factor Authentication – logging into Macbook with OpenOTP Token and proximity access over bluetooth drawing attention.
GDPR has now been in effect for a few months, which has been very evident from the amount compliance statements and tick boxes we all must review to access online services. While informing users about data processing, requesting their consent and complying with it is important, there are also many practical organizational and technical security measures which must be implemented to truly pass the bar of GDPR.
Many of today’s massive data breaches are linked to compromised credentials belonging to remote workers, third parties, and outsourced IT contractors. While telework and outsourced services have become commonplace in the commercial and public sector, organizations still have work to do when it comes to establishing security practices to support these new business models.
Many WiFi networks rely on static passwords, which are inherently insecure, as they can leak outside of the organisation and cannot be revoked individually. RCDevs now has a better solution to control access to WiFi networks, using user certificates with EAP-TLS security protocol.
As a proof of ongoing work towards becoming industry leader in supporting open authentication standards, RCDevs is now proud to announce support for FIDO2 in its awards winning OpenOTP MFA platform. With FIDO2 RCDevs continues on it’s disruptive approach of providing strong authentication as free, for any small business and best in class affordable MFA for businesses of all sizes. With OpenOTP companies can leverage and enjoy the unique advantage of enterprise wide FIDO2 authentication, covering every corner of MFA, from corporate O365 and remote users to desktop login and privileged access.
If you like to start with FIDO2 today, visit rcdevs.com and get your best in class FIDO2 compliant MFA platform for free.
RCDevs has rapidly grown its reputation in Luxembourg in the last year and concluded many local deals in various sectors. This includes several European institutions, banks, investment funds and major government / public sector services.
RCDevs partnered with local service providers like Telindus and Excellium which also provide OpenOTP and SpanKey solutions to their own customers requiring Enterprise MFA and IAM solutions.
In the rest of the world, RCDevs acquired thousands customers and in more than 40 countries, including several fortune 500 companies. Our customers’ size scales from hundreds to hundred-thousands of users and cover various sectors and industries.
The new RCDevs’ SpanKey solution is now ready for sale (https://www.rcdevs.com/store)! SpanKey is a client-server solution which provides seamless AD accounts’ integration into your Linux environments, SSH access without key distribution and user session recording. SpanKey is licensed per server and packages are sold on RCDevs’ webstore or by contacting RCDevs sales. A 50% discount is offered for OpenOTP customers.
Our SpanKey2 main features are:
– Super easy setup (1 minute on a blank Linux host)
– AD accounts in Linux (no more PAM-LDAP or Winbind)
– SSH access (with offlinecapabilities)
– Host access permissions with simple server tagging
– Support for shared accounts (conserving personal audit)
– Graphical session recording in an encrypted DB or NAS
– Automatic account creation and temporary accounts
– Optional multi-factor login with RCDevs Push
– User enrolment via self-services
– Automatic SSH key expiration and renewal via email/sms
– Support for Hardware PIV keys and smatcards.
– Supported on most Linus distributions
Our next release will includes:
– Full MFA support (with challenge response and Hardware Tokens)
– Idle session detection and unlocking with AD domain password
– Sudo replacement (with on-the-fly system owner(s) validation via mobile push)
– Session sharing for collaborative work.
With SpanKey companies can gain control on all SSH key based access, with just one central entitlement storage: the already existing AD/LDAP. Simple, transparent and hassle-free. For more information visit https://www.rcdevs.com/solutions/ssh-key-management/