Multifactor authentication can bear weaknesses that render its efficacy moot. A common response and answer to the most problematic forms of MFA, though the details are limited at best, is phishing-resistant MFA.

The qualifier, phishing resistant, is broadly defined as modes of authentication that rely on cryptographic techniques, such as an asymmetric pair of private and public keys, the Web Authentication API (WebAuthn) specification, biometrics or the FIDO2 standard. 


More

Wired: Google’s ‘Advanced Protection’ Locks Down Accounts Like Never Before

Wired reports that Google has rolled out its Advanced Protection service, where personal Google account…

Read More →

POLITICO: Oregon Senator Ron Wyden Calls for Social Security Administration to Adopt FIDO Authentication

VIA POLITICO Morning Cybersecurity Report 10/6/17 NOW THAT’S WHAT I’M TOKEN ABOUT — The Social…

Read More →

SC Magazine: Mnuchin hails FIDO authentication standards

While speaking at the Federal Identity Forum & Exposition, Treasury Secretary Steve Mnuchin called out…

Read More →