Last November, Duke professor Gary Gereffi returned from a research trip to Kazakhstan and was informed by his IT department that his computer had been hacked. Days earlier, a colleague at Harvard University sent Gereffi an email with an attachment to a scholarly paper. Unbeknownst to both professors, malware inflected the attachment, and as soon as Gereffi opened the document, hackers could peer into Gereffi’s computer and steal his data.
Multi-factor authentication -- also known as two-step or two-factor authentication -- provides an extra layer of security by requiring a second method of verifying your identity before granting access to an online service. It ensures that the device you are using is your own. At Duke, multi-factor authentication is required for most online services, including Duke@Work.
Duke uses Duo to provide multi-factor authentication services. When you log in to a site requiring multi-factor authentication, you’ll see the image on this page, which provides the authentication options available to you.