what does companies usually do(authentication access question)?

in a company that have employees who have access from home, how do they authenticate access?
on the other hand,
supposing that the company have sensitive information, what is the best method of authentication for accessing these sensitive information?
please consider the following methods:
tokens, biometric, certificates, kerberos, challenge handshake authentication protocol, mutual authentication, multi-factor authentication.

Technorati Tags: authentication protocol, certificates, challenge handshake, multi factor authentication, mutual authentication, tokens

One Response

mnmboy
05 Nov 2009

Most use a virtual private network to tunnel into the corporate network. Authentication is usually done by way of an randomly generated, encrypted key that is provided by a tool – usually a "Safecard" – a credit card size key generator, or a key fob…this encryption key also needs the user to use their regular sign-in and password – in other words, all three pieces of information together provide the keys to get in…challenge questions usually apply in the event of a password forget/reset situation – but the challenges do not apply to the "front door" – meaning if a user cannot provide the correct safecard key, user id and password, they ain’t getting in until they talk to either the help desk or a sysadmin; challenges usually only apply to apps on the intranet. All methods you describe are good, but be sure to factor in your access needs, the costs of delivery, etc.

Let us know your thoughts!