Design a Multi-Factor Authentication Process
Week 4 Lab Part 1: Design a Multi-factor Authentication Process
Learning Objectives and Outcomes
Upon completing this Lab, students will be able to complete the following tasks:
Align appropriate authentication requirements to different data types per a defined data classification standard
Define requirements for Remote Access from the Internet for the LAN-to-WAN Domain
Align best practices for private sector and public sector authentication requirements that support online applications such as e-commerce, online banking, and online government
Recommend best practices for remote access security measures and multi-factor authentication for employees and contractors through public Internet
Assess and design proper authentication methods for RADIUS and TACACs+ authentication servers deployments as well as IEEE 802.11 WLAN infrastructures
Assessment Worksheet
Design a Multi-factor Authentication Process
Overview
The students will research best practices for private sector and public sector authentication as it relates to e-commerce and on-line banking. Then they will research the best practices for remote access for employees through public Internet and for employees of city, county, state, and federal governments, based on DoD standards for secure remote access. Multi-factor authentication and restrictions based on data types and sensitivity as discussed in previous labs are major considerations for this research when investigating RADIUS, TACACs+ and WLAN authentication methodologies.
Lab Assessment Questions & Answers
1. In an Internet Banking Financial Institution is Single Factor Authentication acceptable? Why or why not? Yes it can be acceptable because you can buff up security elsewhere.
2. Explain the difference between Positive Verification and Negative Verification? Negative verification is the opposite of positive verification, whereby the customer must contact the
Learning Objectives and Outcomes
Upon completing this Lab, students will be able to complete the following tasks:
Align appropriate authentication requirements to different data types per a defined data classification standard
Define requirements for Remote Access from the Internet for the LAN-to-WAN Domain
Align best practices for private sector and public sector authentication requirements that support online applications such as e-commerce, online banking, and online government
Recommend best practices for remote access security measures and multi-factor authentication for employees and contractors through public Internet
Assess and design proper authentication methods for RADIUS and TACACs+ authentication servers deployments as well as IEEE 802.11 WLAN infrastructures
Assessment Worksheet
Design a Multi-factor Authentication Process
Overview
The students will research best practices for private sector and public sector authentication as it relates to e-commerce and on-line banking. Then they will research the best practices for remote access for employees through public Internet and for employees of city, county, state, and federal governments, based on DoD standards for secure remote access. Multi-factor authentication and restrictions based on data types and sensitivity as discussed in previous labs are major considerations for this research when investigating RADIUS, TACACs+ and WLAN authentication methodologies.
Lab Assessment Questions & Answers
1. In an Internet Banking Financial Institution is Single Factor Authentication acceptable? Why or why not? Yes it can be acceptable because you can buff up security elsewhere.
2. Explain the difference between Positive Verification and Negative Verification? Negative verification is the opposite of positive verification, whereby the customer must contact the