Apparently, sensitivity is a synonym for the value of the data. Risk is a broader concept, including all things (like threats) that need to be considered in protecting the data.
Fantastic insights on user behavior risk factors affecting MFA systems! This explanation goes above and beyond. As someone who has completed cybersecurity training, this was eye-opening. IBM’ influencers at the forefront of enterprise tutorial!
Isn't geolocation hard to test for with the use of VPN? Turning the VPN on and off to because some tools or features need it might make it look like impossible travel, right?
Yes, on all counts. Which is why I would only use it as one of the factors considered. In fact, they all have weaknesses but, when combined, they look a lot better
So coherent and intuitive, basics of authentication explained thoroughly, thank you! What we are, what we know and what we have... isn't this familiar even in real life and not just cyber world? :)
I’m glad you liked it. I think your point is right to a great extent, however, I think we tend to rely more on what we are (voice, appearance, etc.) to recognize each other
I aggree with the step up. This is a hard challenge. Im thinking ml or a selection of a choice like a bunch of shapes to select or even 1 to verify, an emoji maybe? A hand? My car key? Yeah that would be a step up. Thanks Jeff. Feel the love for a very sensitive risk concern in this video. Great breakdown of what could be done and who,when,where,why? Just the how stumps me. Like to see more on IAM❤IBM. Hope the hashicorp has something to add to this mix.
Thanks for the great feedback! Authentication is a hard problem, for sure. The good news is that we've come a long way from just userid/password as the only option. Definitely more work to be done, though ...
I really love Jeff Crume's videos, an easy way to learn about cybersecurity and to stay up to date. Keep up the good work!
Sensitivity in the context of cybersecurity is a new term for me. I wish you had defined it. I'll look into it. This is an excellent series.
Apparently, sensitivity is a synonym for the value of the data. Risk is a broader concept, including all things (like threats) that need to be considered in protecting the data.
@@RaptorSLCyes, sensitivity refers to how potentially damaging the data could be if it were to be compromised.
Fantastic insights on user behavior risk factors affecting MFA systems! This explanation goes above and beyond. As someone who has completed cybersecurity training, this was eye-opening. IBM’ influencers at the forefront of enterprise tutorial!
Thanks so much for all the kind compliments!
Isn't geolocation hard to test for with the use of VPN? Turning the VPN on and off to because some tools or features need it might make it look like impossible travel, right?
Yes, on all counts. Which is why I would only use it as one of the factors considered. In fact, they all have weaknesses but, when combined, they look a lot better
Superb explanation
Thanks!
So coherent and intuitive, basics of authentication explained thoroughly, thank you!
What we are, what we know and what we have... isn't this familiar even in real life and not just cyber world? :)
I’m glad you liked it. I think your point is right to a great extent, however, I think we tend to rely more on what we are (voice, appearance, etc.) to recognize each other
I aggree with the step up. This is a hard challenge. Im thinking ml or a selection of a choice like a bunch of shapes to select or even 1 to verify, an emoji maybe? A hand? My car key? Yeah that would be a step up. Thanks Jeff. Feel the love for a very sensitive risk concern in this video. Great breakdown of what could be done and who,when,where,why? Just the how stumps me. Like to see more on IAM❤IBM. Hope the hashicorp has something to add to this mix.
Thanks for the great feedback! Authentication is a hard problem, for sure. The good news is that we've come a long way from just userid/password as the only option. Definitely more work to be done, though ...
thanks bro , super informative.
Glad you liked it!
Best Explanation
Thanks!
Who checks the authentication, is it an automated risk-based authentication system, or is a human behind a risk-based authentication system process?
This would definitely need to be automated in software. No way for a human to keep up with the demand for most systems
Excelent ♥♥
Wouldn't VPNs cause cases of impossible travel?
They could trigger a warning, which is why you shouldn't rely on geo location alone but use it just as one of many factors in making the decision
@@jeffcrume makes sense! Thanks!