This article describes AWS API key management and AWS Instance Profiles, and continues on from our previous discussion regarding AWS REST authentication. As is usual for REST APIs, developers who need to interact with the AWS REST APIs can use the AWS Management Console to create long term API keys that consist of an Access
AWS is a cloud-services provider. AWS provides a large number of services, in particular IaaS and PaaS type services. While cloud services may not be appropriate for some IT systems, there are certainly use cases where they make sense, and the benefits can be considerable. Leaving aside the merits of cloud-based vs. on-premise IT, in
Two-factor authentication (2FA) is the term that we use to describe how a person can use two attributes to prove their claimed identity. (I say “person” but we could be authenticating a machine or a service; it’s just that 2FA is generally used for authenticating humans). Single-factor authentication has generally been the norm to date.
Dotsec has recently implemented a two factor authentication (2FA) system using Yubikey with Active Directory (AD). The implementation allowed AD to natively understand HOTP token values generated by Yubikey without replacing native Windows login screens and domain controllers for authentication. The advantage of this implementation? It’s secure of course, but it’s also very cost-effective and