Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 17 Next »

At RRU, we care about the security of our data so we’re implementing MFA to protect it.

 What is MFA?

Multi-Factor Authentication (MFA) is a security measure used by organizations to improve their online security and protect their data.

MFA involves using more than one thing to prove who you are. Typically, the two things are "what you know" like a password, and "what you have" which is something that you carry with you.  Using MFA is much more secure because it is less likely that someone with bad intentions will have both your password and the second method you choose.

 Why do organizations use MFA?

Here's what you need to know about why organizations like us use MFA:

Enhanced security
Protection against unauthorized access
Reduced risk of phishing and credential theft
MFA adds an extra layer of security beyond just your username and password. It is harder for unauthorized individuals to access data or systems if they need to know your password AND have your cell phone or key fob to do so. 

Remote Work and Mobile Access: 
With the rise of remote work and mobile device usage, securing access to corporate resources from various locations and devices is critical. MFA ensures that even when you are not physically in your office, your access is secure. 

User-Friendly Experience: 
Modern MFA solutions are designed to be user-friendly, offering options like push notifications, biometrics, or one-time codes via SMS or mobile apps. This makes it easier for you to use MFA without significantly disrupting your work. Microsoft will soon stop supporting SMS (text) messaging so RRU will offer two options for your second factor: push notifications to the MS Authenticator app or a Security Key/Fob (a little USB stick that you carry around with you).

Adaptive Security
Some MFA systems can adapt their security measures based on the context of the login attempt using access policies. For example, policies could specify that if you're on campus plugged into the network on an RRU device, there's low risk so there's no need to ask for MFA. But if you're trying to access our remote server from a personal computer in Greece, we will ask for MFA to make sure that's really you. Other policies are time-based and may ask you to MFA if you haven't done so in a certain period of time. The goal is to use these policies to manage when you're asked to MFA so that the process is not intrusive but that we remain secure.

Preventing Insider Threats: 
MFA can also be effective in preventing insider threats by adding an additional layer of security for employees and trusted users. It helps ensure that even those with legitimate access are properly authenticated. None of the cybersecurity incidents experienced at RRU over the last two years were deliberately permitted by RRU staff. MFA would have prevented ALL of the cybersecurity incidents that RRU has experienced​ over the past two years.

Cost of Data Breaches: 
Data breaches can be extremely costly in terms of both financial losses and damage to an organization's reputation. MFA reduces the likelihood of breaches, which can save organizations a significant amount of money and prevent long-term damage. 

Scalability: 
MFA solutions can scale with growth. We're implementing MFA starting in February by asking employees to register. Then we'll move on to contractors, then students. Initially, only a small number of applications will be MFA-enabled but we'll add others as we go. 

MFA is important to RRU

We're on it! and we need you on it, too.

 When am I required to register for MFA?

Employees: starting in Feb 2024

Contractors (academic and non-academic): starting in March 2024

Students: starting in May 2024

 What choices do I have for my 2nd factor?

Is this you?

Your choices are:

Comments

  • local employee who comes to the office

  1. the MS Authenticator app installed on your cell phone

  2. a security key/fob that you carry around

We recommend using the MS Authenticator app because it is convenient and you can use it for non-RRU MFA needs as well.

The key/fobs can be easily lost and are expensive.

  • offsite employee

  • academic contractor

  • non-academic contractor

  • students

  1. the MS Authenticator app installed on your cell phone

The MS Authenticator app is convenient and you can use it for non-RRU MFA needs as well.

The key/fobs can be easily lost and are expensive. Managing key/fobs for such a large group of people will be cost and resource prohibitive.

 How much data is used by the Authenticator app?

We don’t have exact numbers but in 3 months, an IT staffer who relies on MS Authenticator to authenticate on multiple apps used 2 megabytes (mb) of data. For a year, that would be approximately 8mb.

One gigabyte (gb) of data is 1000 mbs. So, one can expect to use less than 1% of a gb in one year.

about anchors: https://confluence.atlassian.com/doc/anchors-139442.html

  • No labels