Background

A prominent global hotel chain faced significant cybersecurity challenges due to the widespread use of password management software by managers worldwide. Although these password managers securely store complex passwords, relying on a single master password created a considerable security risk. The hotel sought a robust solution to enhance the security of their password management practices.

Challenges

  • Master Password Vulnerability: A single master password for accessing all stored passwords creates a significant point of failure if compromised.
  • Balancing Security and Usability: Ensuring high security without complicating the user experience.
  • Managing Security Globally: Ensuring consistent and effective security measures across a diverse, global team.

Solution: Thetis FIDO2 Key

The Thetis FIDO2 Security Key offers an additional layer of security by integrating hardware-based two-factor authentication (2FA) and passkey login. This solution provides superior protection for master passwords used in password management software, enhancing both security and user experience.

Implementation Process (Using Bitwarden as an Example)

1. Log In to Password Manager Account:

Open your Chrome browser and navigate to your password manager's login page. Enter your credentials to log in.

Log In to Password Manager

2. Access Security Settings:

Navigate to the Settings section and select Security to manage your security options.

Access Security Settings

3. Enable Two-Factor Authentication:

Within the Security settings, find the Two-step Login section and click on Manage next to the 'Security Key' option to add Thetis FIDO2 Key.

4. Register Thetis FIDO2 Key:

Connect Thetis FIDO2 Key to your computer’s USB port and follow the on-screen instructions to register it as your new two-factor authentication method.

5. Test Key:

After registration, log out of the password manager and log back in to confirm that Thetis FIDO2 Key is required for access.

Optional: Enable Passkey for Easier Access:

Enable the Passkey feature for a seamless login experience without passwords, using Thetis FIDO2 Key.

Results and Impact

  • Enhanced Security: Significant reduction in the risk of phishing attacks and unauthorized access incidents.
  • Improved User Experience: Streamlined authentication process increased user satisfaction and efficiency.
  • Operational Efficiency: Reduced IT workload related to password management and improved overall security posture.

Lessons Learned

  • Continuous Improvement: Regular updates and feedback loops are vital for maintaining high security standards and addressing emerging threats.
  • Effective User Education: Comprehensive training and clear communication are crucial for successful adoption of new security measures.

Advantages of Thetis FIDO2 Key over Mobile Passkeys

  • Standalone Security: Thetis FIDO2 Key operates independently of the device, providing robust protection against device-specific vulnerabilities.
  • Consistent Authentication: Ensures secure access regardless of device or platform, unlike mobile passkeys that may be tied to a single device.
  • Enhanced Privacy: Eliminates reliance on potentially compromised mobile operating systems, ensuring higher privacy and security.

For more information on how Thetis can enhance your organization’s security with our innovative FIDO2 solutions, visit our website or contact us today!