Web authentication and access control

Get tips and tricks on web authentication and and web access control. Learn when restricting Web access is necessary and how web application IAM techniques like single sign-on can thwart hacker attacks and threats.

Top Stories

News 28 Oct 2021
Twitter details internal Yubico security key rollout

Following last year's breach, Twitter obtained 100% security key enrollment from its 5,500 internal employee accounts within a month of the cutover date. Continue Reading
By
- Alexander Culafi, Senior News Writer
News 01 Sep 2021
Beware of proxyware: Connection-sharing services pose risks

Cisco Talos warns that sharing internet connections with random people via third-party app like Honeygain and Peer2Profit could lead to malware installations and other threats. Continue Reading
By
- Shaun Nichols

Feature 30 Jan 2015
The top multifactor authentication products

Multifactor authentication can be a critical component of an enterprise security strategy. Here's a look at the top MFA products in the industry. Continue Reading
By
- James Alan Miller, Senior Executive Editor
Definition 15 Dec 2014
machine authentication

Machine authentication is the authorization of an automated human-to-machine or machine-to-machine (M2M) communication through verification of a digital certificate or digital credentials. Unlike user authentication, the process does not involve any action on the part of a human. Continue Reading
By
- TechTarget Contributor
Definition 11 Dec 2014
four-factor authentication (4FA)

Four-factor authentication (4FA) is the use of four types of identity-confirming credentials, typically categorized as knowledge, possession, inherence and location factors. Continue Reading
By
- TechTarget Contributor
Definition 03 Dec 2014
Duo Security

Duo Security is a vendor of cloud-based two-factor authentication products. Continue Reading
By
- Ivy Wigmore
Answer 17 Jun 2014
Proactive additions shore up forms-based authentication

How can we best prevent hacking and user account lock out in Web applications with forms-based authentication? Continue Reading
By
- Kevin Beaver, Principle Logic, LLC
Answer 28 Mar 2014
Authentication caching: How it reduces enterprise network congestion

Michael Cobb explores the pros and cons of authentication caching and whether the practice can truly calm network strain. Continue Reading
By
- Michael Cobb
Answer 07 Oct 2013
The value of 2,048-bit encryption: Why encryption key length matters

Leading browsers are required to use 2,048-bit length keys by the end of the year, but what effect does this have on security? Continue Reading
By
- Michael Cobb
Answer 09 Nov 2011
OAuth 2.0: Pros and cons of using the federation protocol

Learn the advantages and disadvantages of using Open Authorization for Web application authentication. Continue Reading
By
- Michael Cobb
Answer 06 Oct 2011
Insufficient authorization: Hardening Web application authorization

Insufficient authorization errors can lead to Web app compromises and data loss. Learn how to fix these authorization errors. Continue Reading
By
- Nick Lewis
Definition 24 Jul 2008
LEAP (Lightweight Extensible Authentication Protocol)

LEAP (Lightweight Extensible Authentication Protocol) is a Cisco-proprietary version of EAP, the authentication protocol used in wireless networks and Point-to-Point connections. LEAP is designed to provide more secure authentication for 802.11 WLANs (wireless local area networks) that support 802.1X port access control. Continue Reading
By
- TechTarget Contributor
Answer 05 Jun 2007
What are the potential risks of giving remote access to a third-party service provider?

In this SearchSecurity.com Q&A, identity management and access control expert Joel Dubin discusses the potential risks involved with providing remote access to a third-party service provider. Continue Reading
By
- Joel Dubin