MFA and Password Hygiene

Passwords, passwords, passwords! Passwords everywhere!

It’s true that we live in a jungle of passwords. The entangled web of logins that many of us engage every day can be overwhelming. Most have heard the mantra about complex passwords and changing passwords but where does the madness end, really? How in the world are we keeping ourselves sane while keeping ourselves safe? Luckily there are some great solutions. And some great solutions to the problems that the first set of solutions introduces. Bear with me and investigate how MFA contributes to proper password hygiene!

Password complexity is the first defense for staying safe. There are various reports on how fast passwords can be cracked, but complexity is a major portion of this. For example, a mix of 7 upper and lowercase letter may take as little as 30 seconds to break, whereas a mix of 12 numbers, upper- and lowercase letters, and symbols could take as long as 34,000 years for every combination to be tried. “Great!” one might think, “problem solved!”

Partially, one would be correct. Having a complex password is a very important part of proper password hygiene. But with all of these complex passwords, there are only so many sticky notes full of passwords that are reasonable to stick around the computer…

(Quick qualifier…that was meant to be tongue-in-cheek…keeping passwords posted around a workstation is not a good idea nor is it recommended.)

As such, it is important to use a password manager. At Certified CIO, we use PassPortal. We also have had good experience with Roboform. It is much easier for many folks to maintain control of one complex password than tens or hundreds. A password manager often offers reasonably complex passwords and will save the passwords within it. Keep in mind that a password manager is only as strong as the password used to access it. (Ideally it is additionally protected by MFA…please keep reading.) And while these are all good steps for password hygiene, and with no other factors, we would be done. But, unfortunately, there are other factors and they are one of the bigger cracks in the armor.

The human element is often a weaker link than the passwords themselves. What we mean by this is that successful phishing efforts can render all the previous steps useless or at least less effective, as an end user is effectively handing over login credentials. These credentials may be immediately used for harm, but very often these join online databases of login credentials that are bought, sold, and traded in less-than-ethical places such as the Dark Web.

We offer our customers a Dark Web monitoring service, and we recommend this type of service in order to keep tabs on which credentials may be public knowledge. Without this service, one has no effective manner to know what may or may not be available on the underbelly of the internet; however, even utilizing a service such as this is not a full-proof plan.

This, effectively, is where MFA comes in. MFA generally works as an app on a mobile device. After a successful login, a user is prompted to enter a 6- or 8-digit code. This is a timed, random set of numbers. Some of the most common Authenticators are from recognizable sources such as Google and Microsoft. Our recommended MFA product, Duo from Cisco, also has an included Authenticator.

Many decision-makers are coming to realize that MFA is a good option for their business. At times, this is spurned by requirements via compliance or other sources, such as cyber-insurance. If you feel as though MFA is a fit for your business or organization (Hint: it is!) GIVE US A CALL or CLICK THAT CONTACT US BUTTON!

Tabbie Coulter

great professional service and very timely!! would highly recommend for your IT needs.

Jessie Palma

I love this company. They have soo much talent there and they always fix it so quickly! They are very professional and courteous! I've gotten to know some of them because we treat each other like human beings :) It's like having an extended family.

Fernando Perez

Awesome management! Great company.

Joseph Silbaugh

I needed to add an older laptop to the business account for my use on the road. CIO did everything remotely for me. It made the task so easy. They updated everything, added my office 365, my 3 emails and checked everything. Great job, quick and efficiently no stress. I recommend them highly

Kay Westerhold

Always a quick response. Issue solved and can continue on with the task every time. Great job CCIO!!

Bill Fissell

The service was prompt, friendly and knowledgeable. Could not ask for more than that.

Kevin Slack

Upgraded our router with Comcast. It did not go smoothly until Steve Plumlee got involved and got everything working well. When Steve is working on our IT issues, they get resolved. Amen.

Hickory Falls Family Entertainment Center

Thanks for going more in-depth with your engineers and investigating solutions and resolving some of our email challenges.

Bill Moorman

Certified CIO is a smart, professional and friendly team of engineers to work with. I am a bright person but computers can make me feel incompetent. The team at Certified CIO never allows you to feel awkward even asking the most basic questions. You have been a lifeline many times. Thanks for your support.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Better IT for Business. Call Today! (717) 340-6000 (443) 283-0666

MFA and Password Hygiene

Share This Story, Choose Your Platform!

Better IT for Business. Call Today!
(717) 340-6000
(443) 283-0666