More Secure

More Secure Access Logo: Bee in logo with text "More Secure Access"

The digital world is full of opportunities and challenges. At Yale, we are committed to empowering you with tools and knowledge to navigate it safely. ISO’s More Secure initiative introduces practical solutions to safeguard your devices, strengthen your access credentials and foster a proactive security mindset. Together, we can protect our electronic resources and ensure a safer, more secure Yale community.

 

What are the components of More Secure?

 

More Secure Access: Device Security icon (icon of a computer with a lock, shield, and checkmark)

More Secure Device

Protect your device to protect Yale resources.

What It Is: DUO Desktop agent ensures your device meets Yale’s minimum security standards before accessing university resources.

How It Works:

  • Confirms a password is set.
  • Verifies the firewall is active.
  • Checks antivirus software is running.
  • Confirms the device is encrypted.
  • Ensures the operating system is up to date.

Why It Matters: A healthy device is your first line of defense against cyber threats.

 

 

More Secure Access: Login icon (computer with Yale "Y", hardware key, and smartphone displaying a QR code)

More Secure Authentication

Phish-proof your login credentials.

What It Is:  Phish-resistance multi-factor authentication methods to verify your identity before accessing Yale resources.

How It Works:

  • YubiKey: Combines something you have (a physical YubiKey)
    with something you know (your PIN) for effortless and secure login.
  • Mobile Phone as Passkey: Combines something you have (your mobile device)
    with something you know (your password) to securely authenticate access.

Why It Matters: Passkey technology ensures only you can access your account,
even if your password is compromised.

 

Who is enrolled in More Secure Access?

Enrollment is currently focused on departments with access to Yale’s High Risk data.  As we move forward, your leadership will reach out directly once a timeline is established for your department.

Frequently Asked Questions

  • You will receive guidance on how to bring your device into compliance, such as enabling encryption or updating your operating system.

  • No. The university will provide YubiKeys for users who require them. Alternatively, you can use your mobile phone as a passkey.

  • For most users, the changes will be seamless and enhance your security without added complexity.

  • Continue to use your current form of MFA, Duo Everywhere. For more information, visit Use Yale’s Multifactor Authentication (MFA) Service.

How to learn more about More Secure

For more information, please contact the Identify and Access Management team.