Go to content, skip over navigation


More Pages

Go to content, skip over visible header bar
Home News Features Arts & Entertainment Sports OpinionAbout Contact Advertise

Note about Unsupported Devices:

You seem to be browsing on a screen size, browser, or device that this website cannot support. Some things might look and act a little weird.

In response to phishing, IT adds dual authentication

April 7, 2017

Dual-authentication for logging onto Bowdoin Information Technology (IT) services such as Workday and Webmail with a Bowdoin username and password is now available to faculty, staff and students using a product called Duo. The effort comes in response to increased phishing and a January cybercriminal attack on faculty Workday data that changed direct deposit information, according to IT Security Officer Eric Berube. He noted that other institutions have seen similar attacks recently.

Currently, 381 users are enrolled on Duo and the technology protects 11 applications and serves 808 endpoints—devices that are used for authentication, like a smartphone, Berube said.

Individuals can apply to activate two-step through a service request on the IT homepage or by going to the IT service desk in Coles Tower.

The program works by sending push notifications to quickly approve sign-ons from the lock screen of smartphones, as well as from a variety of other devices. Alternatively, users can enter a code via number generation. Two-step can also be completed using a token, known as a UB key, that can be plugged into a computer, or users can receive a phone call on their mobile device or landline.

The service is not required, and IT announced it only to a few groups, although any student is allowed to use it. Only certain individuals, such as managers who have the information of their fellow employees in addition to their own, are required to use Duo for additional account security.


More from News:

Sign up for our weekly newsletter.

Catch up on the latest reports, stories and opinions about Bowdoin and Brunswick in your inbox. Always high-quality. Always free.


Before submitting a comment, please review our comment policy. Some key points from the policy:

  • No hate speech, profanity, disrespectful or threatening comments.
  • No personal attacks on reporters.
  • Comments must be under 200 words.
  • You are strongly encouraged to use a real name or identifier ("Class of '92").
  • Any comments made with an email address that does not belong to you will get removed.

Leave a Reply

Any comments that do not follow the policy will not be published.

0/200 words