00:04
Authentication system in dematerialized zone which is dmz which is a layer closest to internet has both implication for authentication performance and security.
00:22
Here are some considerations and measure to protect in the authentication system in dmz.
00:31
First is network segmentation to ensure proper network segmentation between the dmz and internal network.
00:45
Authentication system should be isolated from the internal network to minimize the risk of unauthorized access.
00:53
Then firewall rules.
00:57
So configure strict firewall rules to control inbound and outbound traffic to authentication system.
01:04
Only necessary ports and protocols should be allowed.
01:09
Next is intrusion detection or prevention system.
01:22
So basically implement ids or ips system to detect and prevent any malicious activities or attacks targeting the authentication system.
01:31
Next is hardening and patching.
01:38
Apply security best practice to harden the authentication system.
01:43
Include disabling unnecessary service, applying regular security patches and updates etc.
01:49
Next is two -factor authentication.
01:57
So implement 2fa adds on an extra layer of security to the authentication system...