<html><head><meta http-equiv="Content-Type" content="text/html charset=us-ascii"><meta http-equiv="Content-Type" content="text/html charset=us-ascii"><meta http-equiv="Content-Type" content="text/html charset=us-ascii"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space;"><div style="margin: 0px;">Good afternoon,</div><div style="margin: 0px; min-height: 14px;"><br></div><div style="margin: 0px;">IS&T is pleased to announce the availability of two-factor authentication </div><div style="margin: 0px;">support for MIT Touchstone via Duo Security. This support allows you</div><div style="margin: 0px;">to associate a mobile or landline phone with your MIT Kerberos account,</div><div style="margin: 0px;">and to require Touchstone logins to require access to this device in addition </div><div style="margin: 0px;">to your MIT personal web certificate or Kerberos password.</div><div style="margin: 0px; min-height: 14px;"><br></div><div style="margin: 0px;">Two-factor authentication is of critical security importance; as</div><div style="margin: 0px;">computational capacity increases, the ability of passwords alone to</div><div style="margin: 0px;">protect sensitive data will continue to decrease as automated password</div><div style="margin: 0px;">guessing attacks become faster and more sophisticated.</div><div style="margin: 0px; min-height: 14px;"><br></div><div style="margin: 0px;">Web applications that provide access to personal information,</div><div style="margin: 0px;">particularly financial data such as direct deposit, have been</div><div style="margin: 0px;">frequent targets of security attacks, as noted in this recent IS&T</div><div style="margin: 0px;">advisory:</div><div style="margin: 0px; min-height: 14px;"><br></div><div style="margin: 0px; color: rgb(71, 135, 255);"><a href="http://ist.mit.edu/news/payroll_scam">http://ist.mit.edu/news/payroll_scam</a></div><div style="margin: 0px; min-height: 14px;"><br></div><div style="margin: 0px;">Use of two-factor authentication is an effective and increasingly common</div><div style="margin: 0px;">way of safeguarding against such attacks.</div><div style="margin: 0px; min-height: 14px;"><br></div><div style="margin: 0px;">To register for a Duo Security account and enroll your phone, please</div><div style="margin: 0px;">visit:</div><div style="margin: 0px; min-height: 14px;"><br></div><div style="margin: 0px; color: rgb(71, 135, 255);"><a href="https://duo.mit.edu">https://duo.mit.edu</a></div><div style="margin: 0px; min-height: 14px;"><br></div><div style="margin: 0px;">and follow the instructions provided. For additional instructions and support, please</div><div style="margin: 0px;">refer to the IS&T Knowledge Base:</div><div style="margin: 0px; min-height: 14px;"><br></div><div style="margin: 0px; color: rgb(71, 135, 255);"><a href="http://kb.mit.edu/confluence/x/RJkwCQ">http://kb.mit.edu/confluence/x/RJkwCQ</a></div><div style="margin: 0px; color: rgb(71, 135, 255); min-height: 14px;"><span style="text-decoration: underline;"></span><br></div><div style="margin: 0px;">If you have any questions or require assistance, please don't hesitate to contact</div><div style="margin: 0px;">the IS&T Helpdesk via assistance via <a href="mailto:helpdesk@mit.edu">helpdesk@mit.edu</a> or x3-1101.</div><div style="margin: 0px;"><br></div><div style="margin: 0px;">Best,</div><div style="margin: 0px;">Mark</div><div style="margin: 0px;"><br></div><div style="margin: 0px;">Mark Silis<br>Director, Operations & Infrastructure<br>MIT Information Systems & Technology<br><a href="mailto:mark@mit.edu">mark@mit.edu</a> 617.324.5900</div><div style="margin: 0px;"><br></div><div style="margin: 0px;"><br></div></body></html>