Identification and authentication are core components of any security architecture. They provide a way of confirming that a system or person is who they say they are. Authentication solutions can be many and varied depending on the needs of the organisation. Many security standards such as those found in government or within the financial sector often require strong authentication mechanisms to verify a user of a system. A strong authentication mechanism may consist of two or three of the different factors of authentication:
Where two or more factors are combined, this is commonly referred to as multi-factor authentication. Multi-factor authentication is one of the most effective mitigation strategies to prevent adversaries from pivoting within a network and gaining further access or elevated privilege. Foresight has gained experience with many different forms of multi-factor authentication, including smart-cards, tokens and certificates (with a focus on PKI).
PKI is the name given to the combination of software, hardware, people, policies and procedures needed to create, manage, store, distribute and revoke Public Key certificates (also known as digital certificates). One of the main benefits of PKI is that it provides a system for distributing and trusting those certificates.
Foresight can provide PKI consulting and integration services. Foresight consultants have a strong background in the authentication space, having been involved in PKI initiatives in both the public and private sector including Australian Government GateKeeper projects. Foresight can assist with: