Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1089
Views
0
Helpful
2
Replies

Protection for Man-in-the-middle attacks

Go to solution
sigveo
Level 1
Level 1

‎02-14-2023 04:06 AM

Hi
How does Duo protect us from Man-in-the-middle or Adversary-in-the-middle attacks?
Any general advices for setting up applications and policies to prevent such attacks?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
raphka
Cisco Employee
Cisco Employee

‎02-18-2023 04:49 PM

Hi sigveo,

Duo Security provides 2FA for authentication. As such our services generally assist with preventing MITM attacks related to authentication events only.

Secure MITM resistant 2FA Methods such as, Push and Security Keys are a great way of ensuring your authentications are MITM attack resistant as the 2FA event is out of band with primary authentication.

You can read more below about Duo Push:
https://help.duo.com/s/article/3252

I will note that whilst Duo does support OTP as a 2FA method, its implementation is not always out of band, depending on your integration type. If MITM attack resistance is your intent, i would recommend using Duo Push or Security Keys such as a Yubikey for your 2FA method.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
raphka
Cisco Employee
Cisco Employee

‎02-18-2023 04:49 PM

Hi sigveo,

Duo Security provides 2FA for authentication. As such our services generally assist with preventing MITM attacks related to authentication events only.

Secure MITM resistant 2FA Methods such as, Push and Security Keys are a great way of ensuring your authentications are MITM attack resistant as the 2FA event is out of band with primary authentication.

You can read more below about Duo Push:
https://help.duo.com/s/article/3252

I will note that whilst Duo does support OTP as a 2FA method, its implementation is not always out of band, depending on your integration type. If MITM attack resistance is your intent, i would recommend using Duo Push or Security Keys such as a Yubikey for your 2FA method.

0 Helpful

Go to solution
jospehmack
Level 1
Level 1

‎03-22-2023 11:58 PM

Man-in-the-middle attacks are a major security concern for businesses and individuals alike. These types of attacks involve an attacker intercepting communication between two parties, allowing them to access sensitive information or manipulate the data being exchanged. To protect against these threats, organizations should implement strong encryption protocols such as TLS/SSL and use VPNs when sending confidential data over public networks. Additionally, they should also ensure that their systems are regularly patched with the latest security updates in order to reduce the risk of man-in-the middle attacks.

0 Helpful
Quick Links
     
                  Duo Release Notes   Duo Discussion Forums      
 
 
Customers Also Viewed These Support Documents