Alternatives to RSA SecurID? [closed]
Have you used, and would recommend, an alternative to RSA SecurID for two-factor authentication?
I have previously worked with CRYPTOCard to perform both Windows and Linux authentication. When looking at it over RSA SecurID it was more the total cost of ownership that was a key factor for consideration. With CRYPTOCard the tokens were manageable by the security administrator directly without having to send it back like with RSA. When the battery died the admin could change the battery and reprogram the token. With RSA when the battery died you would have to send it back and have it replaced which meant having to have extra tokens on hand so that they could be quickly replaced. This is the same situation I've experienced with Secure Computing Safeword tokens.
This is a relatively new startup company but I think their product is one of the most interesting out there for 2 factor authorization.
http://www.yubico.com/products/yubikey/
- It's smaller than the SecurID key fob.
- Has no batteries.
- Doesn't rely on a user to read and retype a number.
- Doesn't require any drivers on the computers.
On a smaller scale you can use Google Authenticator.
There is a pretty straightforward PAM module available for it.
http://code.google.com/p/google-authenticator/