October 6, 2017

POLITICO: Oregon Senator Ron Wyden Calls for Social Security Administration to Adopt FIDO Authentication

VIA POLITICO Morning Cybersecurity Report 10/6/17

NOW THAT’S WHAT I’M TOKEN ABOUT — The Social Security Administration should let Americans add an extra layer of hack-proof protection to the information they provide the agency, according to a leading cyber-focused lawmaker. In a letter to acting SSA Commissioner Nancy Berryhill, Oregon Sen. Ron Wyden said the agency should let people use physical tokens for two-factor authentication on their accounts. Unlike the most common two-factor approaches — text messages and authenticator apps — these tokens are “resistant to all phishing,” Wyden wrote. He pointed out that the agency had already started moving in this direction by making two-factor authentication mandatory for all accounts in June, and he commended the agency for adding a security feature to its website that would make it harder for cyber criminals to impersonate the government in phishing emails. The logical next step, he wrote, is the token-based Universal 2nd Factor, or U2F, standard. “Given the low cost of implementation and strong additional protection that U2F provides, I urge SSA to consider supporting U2F on an opt-in basis for workers and beneficiaries,” Wyden told Berryhill.

Read the story: http://www.politico.com/tipsheets/morning-cybersecurity/2017/10/06/latest-reported-nsa-cyber-tool-theft-raises-contractor-kaspersky-concerns-222693

Read the letter: https://www.finance.senate.gov/imo/media/doc/100517%20RW%20to%20SSA%20U2F.pdf

MORE FIDO in the News


FinTech Magazine: Delegated Authentication – Abandon Friction, Not the Cart

This opinion piece explores how eCommerce retailers can overcome the...

January 19, 2022

Wall Street Journal: Tech that will Change Your Life in 2022

Analyzing industry trends and insights from industry experts, this piece...


The Green Sheet: Digital Commerce in 2022 – Part I

This article analyzes the four pillars of digital commerce—security, intelligence,...


Daily Swig: Cybersecurity conferences 2022: A rundown of online, in person, and ‘hybrid’ events

An inclusion of Authenticate in October 2022: “Hosted by the...

January 14, 2022
Download Authn Specs
Sign up for updates!Get news from FIDO Alliance in your inbox.

By submitting this form, you are consenting to receive communications from: FIDO Alliance, 3855 SW 153rd Drive, Beaverton, OR 97003, US, http://www.fidoalliance.org. You can revoke your consent to receive emails at any time by using the unsubscribe link found at the bottom of every email.