Multifactor authentication can bear weaknesses that render its efficacy moot. A common response and answer to the most problematic forms of MFA, though the details are limited at best, is phishing-resistant MFA.

The qualifier, phishing resistant, is broadly defined as modes of authentication that rely on cryptographic techniques, such as an asymmetric pair of private and public keys, the Web Authentication API (WebAuthn) specification, biometrics or the FIDO2 standard. 


More

Take On Payments: FIDO Tightens Authentication’s Leash

This post from the blog Take On Payments, sponsored by the Retail Payments Risk Forum…

Read More →

One World Identity: Open Sesame: Building Authentication Standards

Host Cameron D’Ambrosi joins FIDO Alliance Executive Director Brett McDowell to discuss the oft-foretold death…

Read More →

The Wall Street Journal: Aetna Adds Behavior-Based Security to Customer Application

Insurance giant Aetna is rolling out a consumer mobile app that uses FIDO Authentication with…

Read More →