POLITICO: Oregon Senator Ron Wyden Calls for Social Security Administration to Adopt FIDO Authentication
VIA POLITICO Morning Cybersecurity Report 10/6/17
NOW THAT’S WHAT I’M TOKEN ABOUT — The Social Security Administration should let Americans add an extra layer of hack-proof protection to the information they provide the agency, according to a leading cyber-focused lawmaker. In a letter to acting SSA Commissioner Nancy Berryhill, Oregon Sen. Ron Wyden said the agency should let people use physical tokens for two-factor authentication on their accounts. Unlike the most common two-factor approaches — text messages and authenticator apps — these tokens are “resistant to all phishing,” Wyden wrote. He pointed out that the agency had already started moving in this direction by making two-factor authentication mandatory for all accounts in June, and he commended the agency for adding a security feature to its website that would make it harder for cyber criminals to impersonate the government in phishing emails. The logical next step, he wrote, is the token-based Universal 2nd Factor, or U2F, standard. “Given the low cost of implementation and strong additional protection that U2F provides, I urge SSA to consider supporting U2F on an opt-in basis for workers and beneficiaries,” Wyden told Berryhill.
MORE FIDO in the News
The Inquirer: Microsoft goes all in on FIDO2 as it dreams of a password-free future
Microsoft has been working towards killing the password for some...May 10, 2019
The Next Web: Passwordless web gets a boost from Windows Hello FIDO2 certification
The Next Web reports that Windows Hello, Microsoft’s passwordless authentication...May 9, 2019
The Verge: When can we finally get rid of passwords?
The Verge reports that passwords, and all the risks that...April 24, 2019