MTS RED: Multifactor authentication service for corporate users

Main article: Multifactor (two-factor) authentication

2024: Introduction of multifactor authentication service for corporate users

MTS RED has supplemented the portfolio of cybersecurity services with domestic multifactor authentication technology for corporate users. It provides protection against hacking a company by attacking users' passwords, including using their automatic brute force or social engineering. MTS RED announced this on February 6, 2024.

According to data to researchers, over 80% hacker of attacks include the exploitation of weak or previously stolen user passwords. Since more than 50% of users use the same password for different accounts, the company may be vulnerable even due to compromise of employee data in a third-party service. This risk becomes more likely when using remote access to corporate resources - within the framework remote of or hybrid employee work format. The multi-factor RED service authentications MTS helps you follow the principles of the Zero Trust model to prevent unauthorized access to the company's information resources and network infrastructure during remote connection and thereby reduce the risk of network attacks and data breaches.

The service can be used when employees access any corporate resource using VPN, VDI, RDP and when accessing cloud and web applications. The use of software and hardware one-time password (OTP) generators is supported. The user can also receive codes to confirm authorization via SMS, phone call, Telegram or email.

Multifactor authentication is a basic measure, the first echelon of protecting a company from attacks on remote employee accounts. It is important that such security technology is not only reliable, but also convenient for users - both for employees and for administrators. The MTS RED service fully meets these requirements, which makes it easy and seamless to integrate it into the general information security infrastructure of companies, "said Vasily Ognev, Head of Multifactor Authentication at MTS RED.

MTS RED multifactor authentication service combines deep automation and flexibility in managing the entire token lifecycle. The administrator can detail the software and hardware token policies, determining the applicability of a particular type of authentication for a particular system up to the level of specific users. Through a multi-platform open stack of technologies, the service can easily be integrated with other enterprise systems, including single sign-on (SSO) technology.

In order to build a unified cybersecurity ecosystem, the service can be integrated with syslog servers and SIEM systems to centrally store event log records, configure triggers for events, and further correlate security events on external systems. The service logs all login attempts to target applications, as well as all actions in the administration console and self-service portal.

The use of multi-factor authentication technology from the cloud provides customers with the ability to connect in a few days, as well as quickly and flexibly scale the solution to geographically remote branches. In addition, the service model eliminates CAPEX costs for infrastructure and implementation.