Partner Security Checklist: RSA SecurID Breach

  • By

    Ericka Chickowski

No Title
Improve Physical SecurityThe physical security of token servers is tantamount, and similarly partners need to stress the importance to token holders of keeping close track of their devices. Depending on the attack, physical access may be the only thing a well-equipped hacker needs at this point.
The channel remains deeply concerned about fallout from the recent announcement that RSA's SecurID authentication product was compromised. But RSA has been less than forthcoming with recommendations or even potential ramifications of how to keep customers safe. It's clear that it's up to partners to make sure that the proper steps are taken to ensure the security of customer information. Here are some key recommendations for immediate and near-term actions that partners need to check off their list, based on RSA's Securicor note and a synthesis of partner and security expert advice. Before all else, suggests Don Gray, chief security strategist for Cautionary, remember that a calm head is necessary to best help customers and that your clients are looking for long-term solutions, not short term fixes. "Don't panic!" Gray says. "A successful attack using the worst case scenario will not appear quickly if at all."
This article was originally published on 2011-03-30