Home page logo

fulldisclosure logo Full Disclosure mailing list archives

From: "Madison, Marc" <mmadison () fnni com>
Date: Thu, 13 Oct 2005 08:22:12 -0500

Did you read the full notice?  This link was at the bottom:
http://www.ffiec.gov/pdf/authentication_guidance.pdf in which the FFIEC
defines several ways to authenticate end users, but as Lyal Collins
pointed out it is all based on your company own risk assessment.

For those that fall under US FFIEC governance, what are you doing to
satisfy these requirements?  I'd like to
think I have more options than running to the store to pick up my RSA
keyfobs...  What about PKI?  Are there
other. options for web based apps?


C. DeBerry

Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]