IT Security

Duke Kunshan University (DKU) and the Duke University IT Security Office (ITSO) are committed to helping faculty, staff and students protect their computers and information from hackers and fraud.

Information security

Learn more about good security practices at the ITSO website. You will find detailed information on various topics including tips for traveling with technology, password strength, data protection, device security, internet safety and copyright. The website also includes a blog about general security and alerts on specific issues the ITSO is tracking. 

To report a security issue or ask a security-related question, contact

Multifactor authentication

Faculty, staff and students are required to use multifactor authentication (MFA) to access the following Duke systems:

  • Sakai
  • Duke Box
  • VPN (virtual private network)
  • DukeHub
  • Working@Duke

MFA, also known as advanced or two-step authentication, provides an additional layer of security when logging in or performing transactions online and at Duke.

When logging in using MFA, a user is required to authenticate their identity using a second factor, typically a phone or separate passcode.

The ITSO strongly recommends using MFA for all NetID-protected services. It is especially recommended for access to critical systems or those used to storing sensitive data per ITSO’s Security Standards.

For further information and instructions on how to sign up to MFA, visit