<div>
<div class="content wysiwyg-content">
Environment: &nbsp;Retail corprate headquarters and outlets. &nbsp;PCI-DSS level 4 compliant. &nbsp;SonicWall gateways are each location.<br />
<br />
The boss approached me about using iPads to connect wirelessly to the network both at the office and the stores. &nbsp;For standard remote access we use RSA products to meet the two-factor authentication PCI-DSS requirement. &nbsp;The only option I see with the iPads is to use SonicWall's Mobile Connect with an SSL VPN. &nbsp;Easy enough to set-up, but the question with which I am wrestling is this: &nbsp;Is an SSL VPN really two-factor authentication?<br />
<br />
I've seen arguments both pro and con, but nothing conclusive either way.
</div>
</div>


Environment:  Retail corprate headquarters and outlets.  PCI-DSS level 4 compliant.  SonicWall gateways are each location.

The boss approached me about using iPads to connect wirelessly to the network both at the office and the stores.  For standard remote access we use RSA products to meet the two-factor authentication PCI-DSS requirement.  The only option I see with the iPads is to use SonicWall's Mobile Connect with an SSL VPN.  Easy enough to set-up, but the question with which I am wrestling is this:  Is an SSL VPN really two-factor authentication?

I've seen arguments both pro and con, but nothing conclusive either way.

Is SSL VPN Two-Factor Authentication?

iPad is an iOS-based line of tablet computers built around the device's multi-touch screen, including a virtual keyboard. The iPad includes built-in Wi-Fi and cellular connectivity on select models. An iPad can shoot video, take photos, play music, and perform Internet functions such as web-browsing and emailing. Other functions – games, reference, GPS navigation, social networking, etc. – can be enabled by downloading and installing apps.

iPad

A virtual private network (VPN) is a network that uses a public telecommunication infrastructure, such as the Internet, to provide remote offices or travelling users access to a central organizational network securely. VPNs encapsulate data transfers using secure cryptographic methods and other security mechanisms to ensure that only authorized users can access the network and that the data cannot be intercepted.

Hardware-based firewalls provide more sophisticated protection for inbound and outbound traffic than the simple Windows software firewall or the basic NAT firewalls found in routers. These devices implement techniques such as stateful packet inspection, deep packet inspection, and content filtering; and may include built-in antivirus and anti-malware protection.