Two-factor authentication can prevent an individual

[mmehedi*#]

Many cyber attacks are initiated by compromising credentials or exploiting weak passwords. Identity Authentication Management is a key component of a more trusted system. Unlike public, operational, and managerial level controls, technical controls are the products that utility companies employ to improve their operational ability. So, when it comes to access controls, authentication at log-on, and keeping unwanted agents out of the system, these are controls that can only be put into products at the vendor level, and that becomes the vendor’s focus.

from gaining access to an OS with the simple input of a user name and a password. In contemporary ICS systems, vendors often build products knowing that there will maintenance russia phone numbers needed sometime in the future. They may provide a log-in capability for maintenance personnel to use that is inherently weak, perhaps employing just four characters.



These passwords are sometimes distributed with the product and they are never changed by the end user, making the system easy to infiltrate by cyber-attackers who are aware of the commonly known password and user name. This is an example of something basic, fixable, and not cost-prohibitive that can be helpful in deterring cyber-attacks. One-time passwords and security tokens are also useful means of authenticating system users at log-in.