How to Secure an Increasingly Mobile Federal Workforce
[Commentary] In the wake of the recent security breaches of the Internal Revenue Service and Office of Personnel Management, government officials are starting to fully address their own data vulnerabilities to ensure their agencies do not suffer the same fate. To fight back and protect sensitive data from falling into the hands of nefarious organizations or opportunistic hackers, federal agencies with a mobile workforce must now deploy more robust technology to enhance data security on mobile devices. Fortunately, there is now a way to create mobile identity credentials to the same strict security standards as federal employees’ smart cards, without the process becoming cumbersome for the end user.
By using a mobile credential that first authenticates the user (with PIN or biometric) to authorize a cryptographic signature, we now have a viable alternative to passwords that is highly secure, convenient, and simple to use. This allows agencies to have far greater confidence and control over who is accessing their networks and sensitive data. Strong authentication enables federal agencies to reap security benefits while allowing for a more mobile and flexible federal workforce. Federal agencies’ old-line approach of keeping employees inside agency buildings and accessing sensitive information from designated terminals isn’t in keeping with today’s mobile society. It is neither a practical, desirable nor effective way to combat cyber criminals.
[Chris Edwards is the CTO of Intercede]