According to NIST Special Publication DRAFT 800-63-B4, a phishing-resistant authenticator offers “the ability of the authentication protocol to detect and prevent disclosure of authentication secrets and valid authenticator outputs to an impostor relying party without reliance on the vigilance of the subscriber.” Two examples of phishing-resistant authenticators are PIV cards for US Federal employees and FIDO authenticators paired with W3C’s Web Authentication API for the private sector.


More

National World: 16 billion passwords leaked: How to protect yourself as cybersecurity experts warn of repeat attacks

Cybersecurity experts are urging internet users to take immediate steps to secure their online accounts,…

Read More →

ZD NET: How passkeys work: Your passwordless journey begins here

Over the last few decades, compromised usernames and passwords have typically been at the root…

Read More →

MobileIDWorld: Meta Rolls Out Passkey Authentication for Facebook Mobile Users Globally

Meta has begun rolling out passkey login authentication for Facebook users on iOS and Android…

Read More →


123282 Next