{"id":25,"date":"2024-04-04T03:42:26","date_gmt":"2024-04-04T00:42:26","guid":{"rendered":"https:\/\/sisu.ut.ee\/nutiturva\/viies-turvakiht-lulita-sisse-kaheastmeline-autentimine\/"},"modified":"2024-04-04T03:42:45","modified_gmt":"2024-04-04T00:42:45","slug":"viies-turvakiht-lulita-sisse-kaheastmeline-autentimine","status":"publish","type":"page","link":"https:\/\/sisu.ut.ee\/nutiturva\/viies-turvakiht-lulita-sisse-kaheastmeline-autentimine\/","title":{"rendered":"Viies turvakiht: l\u00fclita sisse kaheastmeline autentimine"},"content":{"rendered":"<p><span>Ainult paroolide kasutamine oluliste kontode jaoks pole enam turvaline. Oluliste kontode jaoks tuleb kasutada turvalisemaid autentimise viise.<\/span><\/p>\n<ul>\n<li>\n<p><strong>Autentimine<\/strong> on protsess, millega \u00fcks kasutaja, s\u00fcsteem v\u00f5i muu olem (objekt) saab kontrollida teise olemi <strong>v\u00e4idetava identiteedi t\u00f5esust<\/strong>, tavaliselt mingit t\u00fc\u00fcpi <strong>identsust\u00f5endi<\/strong> alusel:<\/p>\n<\/li>\n<ul>\n<li>\n<p>miski, mida <strong>Sa tead<\/strong> \u00a0(n\u00e4iteks parool, PIN-kood, robotil\u00f5ks, turvak\u00fcsimus);<\/p>\n<\/li>\n<li>\n<p>miski, mis<strong> Sul on<\/strong> (n\u00e4iteks ID-kaart, Mobiil ID-ga SIM-kaart, pangakaart, telefoni number, e-mail, riistvarap\u00e4\u00e4smik, paroolikaart, sertifikaat);<\/p>\n<\/li>\n<li>\n<p>miski, mis <strong>Sa oled<\/strong> (s\u00f5rmej\u00e4lg, n\u00e4o topograafia, iirise struktuur, \u2026).<\/p>\n<\/li>\n<\/ul>\n<li>\n<p><strong>Kaksikautentimisel<\/strong> ehk <strong>kaheastmelisel autentimisel<\/strong> kasutatakse kahe erinevat t\u00fc\u00fcpi <strong>identsust\u00f5endiga<\/strong> autentimist.<\/p>\n<\/li>\n<ul>\n<li>\n<p>N\u00e4iteks ID-kaardiga sisselogimisel on \u00fcheks identsust\u00f5ediks ID-kaart ise (see, mis Sul on) ja teiseks identust\u00f5endiks PIN-kood (see, mida Sa tead).<\/p>\n<\/li>\n<li>\n<p>N\u00e4iteks Google\u2019i kontole sisselogimisel on \u00fcheks identust\u00f5endiks parool (see, mis Sul on) ja teiseks identsust\u00f5endiks telefon (see, mis Sul on), millele saadeti SMS-iga kinnituskood.<\/p>\n<\/li>\n<li>Kaksikautentimine on oluliselt turvalisem seet\u00f5ttu, et pahalasel on v\u00e4ga keeruliine enda valdusesse saada kahte identsust\u00f5endit korraga.<\/li>\n<\/ul>\n<\/ul>\n<p><img loading=\"lazy\" decoding=\"async\" width=\"1404\" height=\"513\" class=\"alignnone wp-image-52\" src=\"https:\/\/sisu.ut.ee\/wp-content\/uploads\/sites\/247\/er_pilt_2fa-1.png\" title=\"Autentimine parooli ja telefoniga: Peale parooli sisestamist k\u00fcsitakse telefonis, kas sisselogija oled Sina?\" alt=\"Autentimine parooli ja telefoniga\" srcset=\"https:\/\/sisu.ut.ee\/wp-content\/uploads\/sites\/247\/er_pilt_2fa-1.png 1404w, https:\/\/sisu.ut.ee\/wp-content\/uploads\/sites\/247\/er_pilt_2fa-1-300x110.png 300w, https:\/\/sisu.ut.ee\/wp-content\/uploads\/sites\/247\/er_pilt_2fa-1-1024x374.png 1024w, https:\/\/sisu.ut.ee\/wp-content\/uploads\/sites\/247\/er_pilt_2fa-1-768x281.png 768w\" sizes=\"auto, (max-width: 1404px) 100vw, 1404px\"><\/p>\n<p class=\"text-muted\">Pildi loomisel on kasutatud pilte\u00a0<a href=\"https:\/\/pixabay.com\/en\/iphone-cell-phone-apple-phone-160307\/\" target=\"_blank\" rel=\"noopener\">https:\/\/pixabay.com\/en\/iphone-cell-phone-apple-phone-160307\/<\/a> ja\u00a0<a href=\"https:\/\/pixabay.com\/en\/password-keyword-codeword-solution-866981\/\" target=\"_blank\" rel=\"noopener\">https:\/\/pixabay.com\/en\/password-keyword-codeword-solution-866981\/<\/a><\/p>\n<p><strong>Oluliste kontode alla kuuluvad kindlasti<\/strong><\/p>\n<ul>\n<li>\n<p><span>riigi, pankade ja rahaga seotud kontod;<\/span><\/p>\n<\/li>\n<li>\n<p><span>kontod, mis sisaldavad delikaatseid isikuandmeid (sh terviseandmeid);<\/span><\/p>\n<\/li>\n<li>\n<p><span>esmased meilikontod (isiklik, t\u00f6\u00f6alane), millele saad tellida parooli meeldetuletusi teistesse veebikeskkondadesse sisselogimiseks;<\/span><\/p>\n<\/li>\n<li>\n<p><span>sotsiaalmeedia kontod (Facebook, Twitter, LinkedIn);<\/span><\/p>\n<\/li>\n<li>\n<p><span>keskkonnad (Google, Facebook, Apple, Microsoft), mille abil logid sisse teistesse veebiteenustesse.<\/span><\/p>\n<\/li>\n<\/ul>\n<h2><span>Milliseid turvameetmeid kasutada olulistesse kontodesse sisselogimiseks?<\/span><\/h2>\n<ul>\n<li>\n<p><span>Riigi, pankade, raha ja tervisega seotud keskkondadesse logi sisse ID-kaardi v\u00f5i Mobiili-ID-ga.<\/span><\/p>\n<\/li>\n<li>\n<p><span>Esmaste meilikontode, sotsiaalmeedia kontode ja kolmandatele osapooltele sisselogimisteenust pakkuvate keskkondade jaoks l\u00fclita sisse kaheastmeilne autentimine.<\/span><\/p>\n<\/li>\n<\/ul>\n<h2><span>Kuidas kaheastmelist autentimist sisse l\u00fclitada?<\/span><\/h2>\n<ul>\n<li>\n<p><span>Google\u2019i puhul<\/span><\/p>\n<\/li>\n<ul>\n<li>\n<p><span>suundu aadressile: <\/span><span><a href=\"https:\/\/myaccount.google.com\/\" target=\"_blank\" rel=\"noopener\">https:\/\/myaccount.google.com<\/a>,<br><\/span><\/p>\n<\/li>\n<li>\n<p><span>vali Google\u2019isse sisselogimine &gt; 2-astmeline kinnitamine ja j\u00e4rgi juhiseid.<\/span><\/p>\n<\/li>\n<\/ul>\n<li>\n<p><span>Facebooki puhul<\/span><\/p>\n<\/li>\n<ul>\n<li>\n<p><span>uundu aadressile\u00a0<a href=\"https:\/\/www.facebook.com\/settings\" target=\"_blank\" rel=\"noopener\">https:\/\/www.facebook.com\/settings<\/a>,<br><\/span><\/p>\n<\/li>\n<li>\n<p><span>vali Turvalisus ja sisselogimine,<\/span><\/p>\n<\/li>\n<li>\n<p><span>vali <em>Use two-factor authentication<\/em>,<\/span><\/p>\n<\/li>\n<li>\n<p><span>kui Sa n\u00e4ed kirja, et <em>Two-factor authentication on is off<\/em> (kaheastmeline autentimine on v\u00e4lja l\u00fclitatud), siis vajuta selle teksti taga olevat linki <em>Set Up<\/em> ja j\u00e4rgi juhiseid.<\/span><\/p>\n<\/li>\n<\/ul>\n<li>\n<p><span>Microsofti puhul<\/span><\/p>\n<\/li>\n<ul>\n<li>\n<p><span>suundu aadressile\u00a0<\/span><span><a href=\"https:\/\/account.live.com\/proofs\/Manage\" target=\"_blank\" rel=\"noopener\">https:\/\/account.live.com\/proofs\/Manage<\/a>,<br><\/span><span><\/span><\/p>\n<\/li>\n<li>\n<p><span>logi sisse Microsofti kontoga,<\/span><\/p>\n<\/li>\n<li>\n<p><span>vali Kaheastmelise kontrollimise alt Kaheastmelise kontrollimise h\u00e4\u00e4lestamine ja j\u00e4rgi juhiseid.<\/span><\/p>\n<\/li>\n<\/ul>\n<\/ul>\n<p><span><span><div class=\"accordion mb-3\">\n        <div class=\"accordion-item accordion-item--white\">\n        <h2 class=\"accordion-header\" id=\"accordion-69dbac9d06aa3-heading\">\n            <button class=\"accordion-button collapsed\" type=\"button\" data-bs-toggle=\"collapse\" data-bs-target=\"#accordion-69dbac9d06aa3-collapse\" aria-expanded=\"true\" aria-controls=\"accordion-69dbac9d06aa3-collapse\">\u00dclesanne 9. Kaheastmelise autentimise rakendamine<\/button>\n        <\/h2>\n        <div id=\"accordion-69dbac9d06aa3-collapse\" class=\"accordion-collapse collapse\" aria-labelledby=\"accordion-69dbac9d06aa3-heading\">\n            <div class=\"accordion-body\">L\u00fclita sisse kaheastmeline autentimine enda oluliste kontode jaoks.\u00a0Testi lahenduse toimivust.\n<p>T\u00e4ienda t\u00f6\u00f6lehelt \u00fclesannet nr 2: lisa infovarasid, nendele ligip\u00e4\u00e4sejaid, ohte, n\u00f5rkusi, kahjusid ja turvameetmeid, mis varem j\u00e4id m\u00e4rkamata.<\/p><\/div>\n        <\/div>\n        <\/div>\n    <\/div><\/span><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Ainult paroolide kasutamine oluliste kontode jaoks pole enam turvaline. Oluliste kontode jaoks tuleb kasutada turvalisemaid autentimise viise. Autentimine on protsess, millega \u00fcks kasutaja, s\u00fcsteem v\u00f5i muu olem (objekt) saab kontrollida teise olemi v\u00e4idetava identiteedi t\u00f5esust, tavaliselt mingit t\u00fc\u00fcpi identsust\u00f5endi alusel: &#8230;<\/p>\n","protected":false},"author":6,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"inline_featured_image":false,"footnotes":""},"class_list":["post-25","page","type-page","status-publish","hentry"],"acf":[],"_links":{"self":[{"href":"https:\/\/sisu.ut.ee\/nutiturva\/wp-json\/wp\/v2\/pages\/25","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sisu.ut.ee\/nutiturva\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/sisu.ut.ee\/nutiturva\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/sisu.ut.ee\/nutiturva\/wp-json\/wp\/v2\/users\/6"}],"replies":[{"embeddable":true,"href":"https:\/\/sisu.ut.ee\/nutiturva\/wp-json\/wp\/v2\/comments?post=25"}],"version-history":[{"count":1,"href":"https:\/\/sisu.ut.ee\/nutiturva\/wp-json\/wp\/v2\/pages\/25\/revisions"}],"predecessor-version":[{"id":142,"href":"https:\/\/sisu.ut.ee\/nutiturva\/wp-json\/wp\/v2\/pages\/25\/revisions\/142"}],"wp:attachment":[{"href":"https:\/\/sisu.ut.ee\/nutiturva\/wp-json\/wp\/v2\/media?parent=25"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}