-
Applying unified communications
Thuy Ha, director of product management at Qwest Communications, discusses a practical framework for unified communications. Ha explains how to build a foundation on ...
-
Optimizing mobility
Thuy Ha, director of product management at Qwest Communications, explains how the network has evolved from being voice-based and centralized to being an individual ...
-
Business class SaaS
The Software as a Service market is expected to double by 2012. Martin Capurro, senior director of product management at Qwest Communications, examines how ...
-
Non-intrusive security
Martin Capurro, senior director of product management at Qwest Communications, discusses how to strike the right balance between productivity and security within the enterprise. ...
-
Desktop virtualization
By 2011, there could be more than 660 million virtualized desktops. John Whaley, CTO and Founder of MokaFive, talks about the issues surrounding current ...
-
Mobile virtualization
Mike Seashols, Chairman of VirtualLogix, talks about implementing virtualization technologies onto mobile platforms. He says there are many issues that mobile providers have to ...
-
Nurturing sales leads
Phil Fernandez, President and CEO of Marketo, says that many companies today are not managing sales leads effectively. He suggests ways to utilize the ...
-
Managing Internet growth
The Internet is growing by 1 zettabyte a year, fueled by images, videos, gaming, and peer to peer file sharing. Pieter Poll, CTO of ...
-
Online ad strategies
There are more than 300 ad networks that focus on monetizing Web sites, so having a strategy is key. Ren Chin, marketing vice president ...
-
What is semantic search?
Semantic search uses the science of meaning in languageinstead of just searching keywords, it checks the context of the words to return more relevant ...
-
Next generation of business intelligence
Data warehouses collect gigabytes of data everyday but the information is not always meaningful. Why? Angela Shen-Hsieh, President and CEO of Visual I/O, says ...
-
SIP trunking 101
Voice, instant messaging, and video no longer have to be islands of collaboration. Kenneth Kuenzel, founder and CTO of Covergence, shows how SIP trunking ...
-
Wireless inside the enterprise
With the rise of PDAs, Blackberries and mobile phones, the demand for wireless service inside large buildings is increasing every day. Leila Nouri, director ...
-
Intel® vPro™ technology and cost savings
Sponsored: Randy Nystrom, an IT systems engineer at Intel, shows how vPro saves time and money by diagnosing PC problems remotely. The content for ...
-
Intel® vPro™ technology and manageability
Sponsored: Limited technical support hours and powered down PCs can make it difficult to manage large numbers of PCs. Randy Nystrom, an IT systems ...
-
Application streaming
Sponsored: Updating applications can be time-consuming for both users and administrators. Christian Black, an IT systems engineer at Intel, explains why application streaming is ...
-
OS streaming
Sponsored: Christian Black, an IT systems engineer for Intel, spells out the many benefits of hard-drive virtualization, or operating system streaming, including faster boot ...
-
Enterprise 2.0
Vince Casarez, vice president of product management at Oracle, explains how Web 2.0 technologies, such as tags, wikis, and mash-ups, can be applied within ...
-
Secure file transfers
John Thielens, vice president of technology at Tumbleweed, talks about the need for managed file transfers that are not only secure, but auditable and ...
-
What is LEED?
"Going green" is becoming commonplace in the corporate world. Paul Holland, general partner at Foundation Capital, explains LEED, the metrics used to certify the ...
-
What is a mashup?
Developers are getting creative, taking APIs from multiple Websites and merging them to form new, innovative applications. Frozenbear.com merges Google maps and Singles to let you know where the single people are in your neighborhood. Parkingcarma.com helps you track down parking spaces in the Bay Area. ZDNet Executive Editor David Berlind says mashups are the fastest growing ecosystem on the Web and that by 2007, there will be 10 new mashups per day.
-
Non-intrusive security
Martin Capurro, senior director of product management at Qwest Communications, discusses how to strike the right balance between productivity and security within the enterprise. He explains security must work end-to-end, from the system level to the mobility level, and how each layer works to mitigate risk.
-
What is virtualization?
Data centers are commonly filled with large numbers of servers that require a tremendous amount of time and money to maintain. Dan Chu of VMware shows how virtualization can optimize fewer servers to run at higher performance levels.
-
First steps to SOA
What does it really mean to introduce SOA into an organization? Ross Mason, CTO and co-founder of MuleSource, explains how an enterprise service bus allows different applications to communicate with each other.
-
Desktop vs. workstation: Introduction
Sponsored: Dave Buckley, product line manager of workstations at HP, explains the differences between desktops and workstations, and how these differences influence purchasing decisions. The content for this video was sponsored and provided by HP.
-
Users-to-tech support ratio
How many employees should one tech support staff person oversee? CNET's Justine Nguyen explains the golden ratio of users to tech support staff, and what factors contribute to it.
-
Applying unified communications
Thuy Ha, director of product management at Qwest Communications, discusses a practical framework for unified communications. Ha explains how to build a foundation on a converged network, then add layers such as mobility, conferencing and collaboration.
-
Energy-efficient transistors
Rob Willoner, a technology analyst at Intel, explains how smaller and more energy-efficient transistors are resulting in faster and more powerful CPUs.
-
Implementing balanced scorecards
BNET director Jay Gulick drills down on the five principles used to implement the balanced scorecard -- a widely-used tool for managing and measuring a company's strategy.
-
What is semantic search?
Semantic search uses the science of meaning in languageinstead of just searching keywords, it checks the context of the words to return more relevant results. Brooke Aker, CEO of Expert System USA, predicts that it will usher in the era of Web 3.0.
Talkback
Video Channels
From our video sponsors
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
- Save time with automated shipping solutions
-
The Business Essentials Guide provides you useful tools and templates to help grow your business and save you time with automated shipping solutions.
- Visit the UPS Business Essentials Guide
- The best support in the Linux business
-
If Linux is going to power your mission-critical applications, you'd better have the best support known to business. Novell was rated the top provider of Linux technical support.
- Learn more >>
- Reduce risk. Reduce complexity. Increase reliability.
-
A simplified IT environment isn't just less complex. It's also more reliable. Standardize on a single Linux platform with SUSE Linux Enterprise from Novell, and get the world's most interoperable Linux
- Learn more >>
- New Online Dashboard for IT Leaders
-
Read about top issues IT decision-makers face every day, plus get cost-effective solutions to real-life IT problems.
- Learn more >>
Two-factor authentication
Dennis Hoffman, vice president of enterprise solutions at RSA, explains how a security process called “two-factor authentication” works to validate users gaining access to company data.
Hi. My name is Dennis Hoffman. I am the Vice President of RSA, the security division of EMC. Today we are going to be talking about two-factor authentication.
Security is really the management of a conversation between a human and a hunk of data. Historically the way we've managed this conversation is by building a perimeter around the people and the data and locking down the perimeter. Increasingly however, we're learning that's an inefficient way to secure information.
By far a better way to secure the information is to focus on securing both the people and the data. And here's why.
First, data moves. It's constantly traversing perimeters. Whether it's backup tapes, email messages or laptops that are lost in cars. Data is continually leaving the perimeter.
Second, people move too. In fact, there is more than one kind of people. Not only are there employees but there are customers and there are business partners. And all of them need access to the same information. So information-centric security focuses on both the data and validating the identity of the person.
So let's look at authentication. Authentication is the process of validating to an IT system that you are who you say you are, so they can then trust you and give you rights or access to privileges to things like networks or computers.
People are comprised of a number of elements in the digital world. The first is a user name. And then there are a number of factors that we use to increasingly validate that people are who they say they are.
The first factor is something you know. That often takes the form of a password or a PIN. The second is something that you have. Often a randomly generated set of six digits that are known as a pass code. And the last factor is something you are, which is generally a biometric of some form like a fingerprint or a retinal scan or voice print.
Anything more than one factor is known as strong authentication. Today what we are going to talk about is the most common form of authentication or two-factor authentication.
So in two-factor authentication we use two devices or tokens. They can be hardware or they can be software. And they can contain a randomly generated set of six digits or eight digits that are time synchronized with a server that is either at the corporate headquarters or it is hosted somewhere on the Internet.
So the way the process works is that the user enters into a computer their user name, their PIN and the pass code. And that is compared with the value on the server where the user name, the PIN and those six digits have to be exactly matching in order to grant access. If they don't, access is denied and the authentication fails.
The reason this is so important is because PINS are considered widely insufficient to prove you are who you say you are. Passwords and PINS are generally something that people either make too simple so that someone can guess them. Or they make them too complicated in which case they write them down and compromise the security.
Two factor authentication is a way to take something you know, add something you have, and improve the process of securing the people part of information-centric security.