What is two-factor authentication?
Two-factor authentication strengthens access security by requiring two methods (also referred to as factors) to verify your identity. These factors can include something you know – like a username and password, plus something you have – like a smartphone app to approve authentication requests.
2 factor authentication protects against phishing, social engineering and password brute-force attacks and secures your logins from attackers exploiting weak or stolen credentials.
How it works?
Two-factor authentication provides unambiguous identification of users by means of the combination of two different components. These components may be something that the user knows, something that the user possesses or something that is inseparable from the user.
Good example of something that the user possesses is moble phone or smartphone. Second part of secret password can be sent to their mobile device by SMS or via a special app.
Dynamically generated passcodes are safer to use than static log-in information
No additional tokens are necessary
Easy, Effective and Secure
Company CYONE presents lightweight mobile two-factor authentication solution for HCL Lotus Domino web applications and HCL Verse on Premise and HCL iNotes or HCL Volt. This solution does not requires any other third-party servers or applications, except existing HCL Domino infrastructure.
Unlike other competitors solutions, require significant infrastructure changes and extra costs for third-party software.
Enable 2FA in less than 20 minutes
Enable 2FA on Your server in Less than 20 minutes. Installation is very simple. Small DSAPI (Domino Security API) and one configuration database. Flexible configuration allows to enable all or just some users for 2FA. Built-in Self enrollment portal allows easy and transparent adoption of the product. Users may enable 2FA when they decide.
|Functionality and Features||CYONE 2FA||HCL MFA|
|Domino version support|
local GSM modem or internet SMS sending service
|Selective user protection||+||Not for now|
|Alternative(Private) phone number support for SMS||+||-|
|Alternative e-mail support||+||-|
|Requires ID Vault||Not required||Required|
|User can choose code delivery way to get authenticated||+|
user can choose SMS, TOTP, email,
or email forwarded as SMS (depends on GSM operator services)
|TOTP Code Brute force protection||+||+|
|TOTP Scratch tokens||No||+|
|Source IP Exclusions||+||Not for now|
|Statistics for easier monitoring||+||+|
|Mature solution||8 years on market||Just arrived|
*) Based on presentation and Q&A by link: https://support.hcltechsw.com/csm/en?id=kb_article&sysparm_article=KB0092629