Today, our tip #15 in our Christmas calendar “24 tips for a secure Christmas”, is to deploy two-factor authentication. Any servers that requires authentication should be set up to use two-factor authentication (2FA). The two-factor authentication is a security process that requires two separate forms of authentication; first a password set by the user, and then a secondary form which can be a hardware token or similar. This means that even if you would be keylogged, they would only have access to your personal password (but still can’t login as they don’t have the second form of authentication). Two different systems for 2FA are RSA Authentication Manager and DuoSecurity.