What is Duo and two-factor authentication?
Two-factor authentication is a way of logging into your account that requires more than just your username/password combination. The problems with using usernames and passwords are numerous.
- Many users choose weak passwords which can be easily guessed or cracked
- Phishing attacks successfully trick people into revealing passwords
- Viruses/malware can capture passwords and send them over the network where they can be collected
- Users on unsecured networks, for example, at the mall can have their passwords sniffed
The main drawback of the username/password is that this combination is only a single piece of information that a malicious individual needs to obtain in order to compromise your account(s).
Two-factor authentication, as implemented at UMBC, adds an extra layer of security to your login procedure by requiring you to have in your possession something physical unique to you. At UMBC that physical object can be either your cell phone, your office phone, or even a tablet.
UMBC has partnered with Duo Security to provide the infrastructure for two-factor authentication.
For more information on two-factor authentication as provided by Duo Security, go to http://guide.duosecurity.com
How do I get started using Duo?
Getting started is easy. You will just click a button to enroll, optionally install the Duo app on your mobile device, and then be guided through the final enrollment steps the first time logging in to WebAuth.
- How do I activate Duo for my UMBC account?
- Once Duo is active, how do I enroll myself?
- I replaced or reset my mobile device. What do I do now?