Hello.
I want to start this blog about the Cisco DUO Security solution, with a very relevant question.
The answer to this question is really broad, although I can start by describing the “trigger” of this great business need, as Information Security is.
To start off on the right foot, I want to start from 3 business consequences that the COVID-19 pandemic left us:
Well, actually, nowadays “There is no Border anymore”.
One moment!
I mentioned… #YaNoHayBordeEmpresarial#, which is not the same as saying that you don’t need a Firewall to protect the data that is in your company’s internal domain.
The Firewall, you need it now more than ever!
Now, when I mention that #YaNoHayBordeEmpresarial#, I mean that before the pandemic, the Information Security or InfoSec model referred to:
Establish security policies to be fulfilled, within the company, on a data also within the company and for a guaranteed User IDENTITY, also, within the Company.
Here, there is a pattern of both the use and the location of the data… “Everything was INSIDE the company” and the “Perimeter or Firewall. INSIDE the company”
But not anymore…
And it is that the DIGITAL IDENTITY, that is, Who am I? it is, in short, the true BUSINESS EDGE of today.
In short, the edge has expanded to the edge of the user, who uses various devices, including laptops, desktops, phones, tablets, browsers, to work digitally, with the sole purpose of connecting to the company’s data network. , which is distributed among multiple applications located in the CLOUD, including: Microsoft 365, G-Suite, Dropbox, Oracle, Azure, AWS, Local Telcos, etc.
And when observing the great diversity of applications and that the DATA #YaNoEstaDentroDeLaEmpresaria# , but rather fully distributed in the world of the PUBLIC CLOUD, added to the fact that the workers are also geographically distributed creating connections from anywhere, from any device and through Any application in the cloud, then, is where the value of Security over the IDENTITY of the USER is IMPORTANT and it is what must be PROTECTED.
It’s like saying, tell me who are you? and first I will verify, if your identity card is valid.
If positive, I let you pass, if not, I deny you entry to my company.
But what happens if your card or key is stolen?
Because they are “simple” security mechanisms and lack advanced protection mechanisms, any person could SUPPLANTE your IDENTITY, impersonate you, access with your username and password and steal business information, or worse still kidnap the data, a fact that It is known nowadays as Ransomware.
So what should you do?
You must implement more than one USER IDENTITY system. Yes, more than one system! The good news is that this system already exists and it is called MULTI FACTOR AUTHENTICATION, better known by its acronym MFA.
This is where Cisco DUO comes into play with its MFA-based Security solution, which offers a Multi-Factor Authentication mechanism to strengthen ACCESS to the COMPANY, from any device and to any application, guaranteeing encrypted connections, via 2FA and fulfilling the 3 criteria for the assurance of IDENTITY and ACCESS to business resources, which are:Confirmo algo que TIENES.
I confirm something that you ARE.
I confirm something you KNOW.
These three premises, added to your Digital Identity and a Cloud model, designed for the New Digital Economy, establish a highly robust, secure and reliable Business Protection Framework.
Now, you may be wondering… What is Cisco DUO?
With that said, Cisco DUO offers the following great features:
Cisco DUO is a robust computer security system that: