According to NIST Special Publication DRAFT 800-63-B4, a phishing-resistant authenticator offers “the ability of the authentication protocol to detect and prevent disclosure of authentication secrets and valid authenticator outputs to an impostor relying party without reliance on the vigilance of the subscriber.” Two examples of phishing-resistant authenticators are PIV cards for US Federal employees and FIDO authenticators paired with W3C’s Web Authentication API for the private sector.


More

Security Journal: Fingerprints agrees distribution partnership with Ansal Component

Fingerprints’ biometric access solution is designed for physical and logical access devices and applications such…

Read More →

FinExtra: Mitigating fraud risk: effective strategies for small financial institutions

Passwords are one of the most common targets for fraudsters. Strengthening password security demands robust…

Read More →

Engadget: PlayStation now supports passkey sign-ins

Sony Interactive Entertainment (SIE) introduces passkey support for PlayStation accounts, allowing users to log in…

Read More →


123230 Next