Certificate-based, multi-factor authentication is a mainstay security technique used by the U.S. Federal Government to ensure the identities of entities within a Public Key Infrastructure (PKI). Two primary components of multi-factor authentication are "what you have"—such as a securely stored private key—and "what you know", a password to unlock access to the securely-stored credentials.
For human users, multi-factor authentication is easily facilitated by using a secure smart card or USB token. The person assumes physical ownership and responsibility of the token and can use it as needed to access PK-enabled resources.
| But, what if the entity in need of credentials is a non-person entity (NPE), like a device, software robot, or some other automation technology? These entities still must have hardware-secure credentials to meet security mandates. Or, what if the entity is indeed a person, but token use is not desirable or not an option?
Attend this webinar to learn how Thales Trusted Cyber Technologies' Luna Credential System introduces a new approach to multi-factor authentication by maintaining user credentials in a centralized hardware device that is securely accessible by endpoints in a distributed network. |
The session will discuss how the Luna Credential System can address multi-factor authentication challenges such as:
- Issuing hardware-based identity credentials to NPEs and software robots
- User authentication across the mobile workforce and a disparate variety of devices
- Credential data protection to mitigate the risk of accidental loss or intentional compromise of a physical token
- Digital signatures issuance for humans and NPEs
- OMB Memo M-19-17, DoD Instruction 8520.3, and NIST 800-63-2 E Authentication compliance