MSTerminalServices.org Forums

Forums Home | FAQ | Search | Profile | Private Messages | Log in/Register/Password

What does Out of Band 2 factor authentication mean to you?

Page 1 of 1
Next:  Microsoft Terminal Services: User's IE Proxy Settings get Overridden by Administrator's  
Author Message
asmithers




Joined: May 26, 2008
Posts: 6



(Msg. 1) Posted: Tue Jun 17, 2008 8:53 pm
Post subject: What does Out of Band 2 factor authentication mean to you?
I've seen the term Out of Band 2 factor authentication being thrown around a lot in the last few weeks. I have my own view on what this actually means, but I bet it means different things to different people. What does it mean to you?
Back to top
Send e-mail Login to vote
dagar




Joined: Jul 11, 2008
Posts: 1



(Msg. 2) Posted: Fri Jul 11, 2008 8:16 pm
Post subject:
Are you familiar with the reasoning behind out of band (OOB) networks? The network operations and information assurance considerations?

Are you familiar with one time password (OTP), it's usage and varying technologies?

I ask as this is a two prong question Cool
Back to top
Send e-mail Login to vote
ashjones




Joined: May 28, 2008
Posts: 2



(Msg. 3) Posted: Thu Jul 17, 2008 6:45 pm
Post subject: OOB
Familiar with the topics: OOB meaning you use two networks to provide 2-factors of authentication, and single sign-on, using a single, coordinated username and password for multiple purposes. I'm trying to get a sense of whether the OOB is all that it is cracked up to be. I've been trying to understand whether OOB can protect a session from snoopers, and am drawing the conclusion that it can't, if a PC and its browser is compromised. For example, if I use 2-factor Authentication for Outlook Web Access and the 2nd factor Authentication method is a phone, and I'm using a PC in an Internet cafe, I might be able to protect my server but not my session, right?
Back to top
Send e-mail Login to vote
asmithers




Joined: May 26, 2008
Posts: 6



(Msg. 4) Posted: Mon Jul 21, 2008 10:48 pm
Post subject:
Out of Band is good because it is difficult for the bad guys to have a view into both forms of authentication simultaneously. My username and password passes through the browser on one network and my phone authentication passes through another. How good the badguys possibly have access to both?
Back to top
Send e-mail Login to vote
Display posts from previous:   
    All times are: Eastern Time (US & Canada) (change) Page 1 of 1

 
 You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Looking for more Terminal Services info?

Sign up to the MSTerminalServices.org Monthly Newsletter, written by Terminal Server MVP & Citrix CTP Stefan Vermeulen, containing news, tips, interviews, links of the month and much more. Subscribe today and don't miss a thing!

Become an MSTerminalServices.org member!

Discuss your Terminal Services & Citrix issues with thousands of other SBC experts. Click here to join!

Community Area

Log in | Register