As more and more organizations are moving from their internally hosted systems to leverage cloud-based SaaS offerings, information security is becoming more important. We at Bitbar are investing heavily to support the governance and security requirements of a modern development organization, and as part of this focus we are introducing Multi-Factor Authentication (MFA) for highly secured mobile app testing on Bitbar, especially for our Enterprise customers.
What is Multi-Factor Authentication?
Multi-factor authentication is a security feature that requires more than one method of authentication from independent categories of credentials to verify the user’s identity for a login or other transaction. Multifactor authentication combines two or more independent credentials:
- What the user knows (password)
- What the user has (security token)
- What the user is (biometric verification).
The goal of MFA is to create a layered defense and make it more difficult for an unauthorized person to access the service. If one factor is compromised or broken, the attacker still has at least one more barrier to breach before successfully breaking into the system. Additionally, time is also used as an additional factor so not only has the attacker have more than one of the authentication methods, but some of them are constantly changing and only valid for a limited time. This makes the brute force password cracking very difficult.
What Are the Benefits for Bitbar Users?
The need for such security measures has risen from several recent developments in the cybersecurity arena. First, computing power has increased so significantly that it is faster to crack passwords with brute force computation. Second, there have been several very large security breaches where millions of usernames and passwords have leaked to cybercriminals and people tend to reuse the same passwords on multiple online services. Finally, organizations are relying increasingly on online services for their business-critical activities making these online services potential targets for criminal activities.
By using Multi-Factor authentication Bitbar users can protect themselves from the most common authentication-related breaches and, especially, when combined with Single Sign-On functionality available at Bitbar Cloud enables solid enterprise-level access control.
How to Configure Multi-Factor Authentication on Bitbar Cloud?
Enabling Multi-Factor Authentication on Bitbar Cloud can be done in three simple steps.
Step 1: Once you have logged in, click the user avatar symbol in the top right corner to access the account settings.
Then click My Account and open the Security Settings from top right corner of the My Account panel.
Finally, select Multi-factor authentication from the security settings menu and you should see MFA Disabled-dialog.
Step 2: Click Enable-button on the MFA-dialog to activate Multi-factor authentication for your account. To use MFA you need to install any of the Authenticator mobile applications for receiving the security tokens. Most common ones are:
Once you have installed the Authenticator application you just need to scan the QR code from the Bitbar MFA pop-up and you are ready to go.
Step 3: Every time you are logging in to Bitbar Cloud you will first enter your username and password and then you are presented an MFA pop-up to enter a 6-figure security token generated by your Authenticator app before you are granted access to Bitbar Cloud.
Image by pixelcreatures via [source link] (copyright-free)