For years, Apple has said they don’t suffer from malware, but then every so often, something pops up and hits them fairly hard. (Not that they admit it, but they certainly aren’t any better at security than anyone else. They only claim to be.) The latest has been WireLurker, which is an interesting combination Mac and iOS vulnerability, something that attacks the Mac first, in hopes that an iPhone will be connected so it can infect it and get information. I find this an intriguing attack mechanism, and it even plays into the Apple-for-everything mentality they push, that if you have a Mac you certainly have a iPhone.
But a lot has been written about this, so I won’t go into it, but one thing in this particular article did catch my attention — the heading “The Nonintuitive Gatekeeper”. This caught my eye for two reasons. The first is that if you believe everything Apple says, everything they do is intuitive, but here is someone on a Mac-oriented website saying that it isn’t intuitive to use Gatekeeper. The second reason is that if security isn’t done in such a way as to be easy and almost invisible, you will get problems like this.
Security is hard, and users have better things to do than spend time on it. If you can’t integrate your security solution into the user’s normal workflow in such a way they can readily understand, you have a problem, and one that will cause problems down the road, such as prompts always being approved no matter what they say, or disabling security if they have a choice. If security becomes a burden, it becomes a hindrance to work.
GreenRADIUS is designed to work with a number of different 2FA tokens which can be easily integrated into existing authentication flows with little to no change for your users, allowing them to increase security while minimizing disruptions.