Cyberexpert Masalovich: 2 factors of authorization on State services will provide more durable protection
Photo: Unsplash
The president of the consortium “Inforus”, a cybersecurity specialist Andrei Masalovich, in a conversation with “Lenta.ru”, explained the need for two factors of protection on the site of “Gosuslug”.
“One-factor authorization is when you present one thing to enter, two-factor is when you present something two. At the same time, we have three semantic domains with regards to what can be presented: you can know something, for example, a password, you can have something, for example, a cell phone to which an SMS will come, and you can have an inalienable characteristic or a special sign – what is now called biometrics, ”Masalovich said.
According to Masalovich, one-factor authentication is unstable and can always fall into the hands of an attacker if he steals a password or phone. Two-factor authentication is considered strong protection if a person does not tie two factors together, for example, does not store a password on his phone, the cyber expert said.
“SMS to the phone is familiar to us, but then we need to continue the educational program for the population, so that they do not dictate SMS to strangers, and, in general, do not answer calls to bad uncles,” he said.
Earlier it became known that in 2022 the Ministry of Digital Industry is going to introduce mandatory two-factor identification of users on the State Services website; in order to enter the portal, citizens will need to enter a code that is sent to the phone via SMS in addition to their login and password. Now, in 90 percent of cases, only one-factor identification is installed to enter the profile.
