Multifactor authentication can bear weaknesses that render its efficacy moot. A common response and answer to the most problematic forms of MFA, though the details are limited at best, is phishing-resistant MFA.

The qualifier, phishing resistant, is broadly defined as modes of authentication that rely on cryptographic techniques, such as an asymmetric pair of private and public keys, the Web Authentication API (WebAuthn) specification, biometrics or the FIDO2 standard. 


More

TechRepublic: How to go beyond passwords in Windows 10

Windows 10 is moving towards more secure options for authentication — including support for the…

Read More →

ITPro Today: The Passwordless Authentication Future May Be Closer Than You Think

Microsoft Edge has joined Firefox and Chrome in adding support for the Web Authentication protocol,…

Read More →

Dark Reading: Is SMS 2FA Enough Login Protection?

Dark Reading reports on the Reddit breach, citing FIDO Security Keys as a more secure…

Read More →