Multi-Factor Authentication

Your end users already carry multiple devices. Why not put them to use? That’s the thought behind multi-factor authentication (MFA), a solution leveraging multiple devices and factors to provide extra security: texting an authentication code to a user’s smartphone, for instance. Here’s what Okta has to say about this innovative authentication method.

How we went passwordless at Okta

Today, Okta’s CIO Alvina Antar announced that Okta has gone 100% passwordless for workforce apps. Every Okta resource in our tenant now uses passwordless, phishing-resistant authentication policies, representing a major elevation of our user experience and security posture. We officially reached this milestone on August 30th, when Okta on Okta…

The real value of passwordless authentication

Earlier this year, Okta announced we’re going 100% passwordless, updating all of the apps and services our workforce uses to be consistent with phishing-resistant policies. Towards that goal, we're making great progress. Each week we analyze thousands of authentication events triggered by our workforce. And this past week, fewer than 2% of those…

Bootstrapping Okta FastPass enrollment in a phishing-resistant manner

Deploying phishing-resistant multi-factor authentication helps prevent unauthorized access to your company’s sensitive resources. But what if the process to enroll in that factor is not phishing-resistant? At Okta, we recognize the phishing resistance of a factor traces all the way back to enrollment, and that’s why we have now built into Okta…

How Identity-First Security Reduces the Impact and Effectiveness of Attacks

Part one of a multi-part series “Identity is the perimeter of security.” I was introduced to this phrase in 2012 after my manager returned from a conference. He scrawled that phrase at the top of the whiteboard in his office, and there it stayed until I eventually moved on from that organization in late 2013. Though I had already spent seven years…

Cyber Security Awareness Month: 4 Ways to Participate

We live in a world of modern digital companies and users have never had so much freedom. We can build anything with cloud apps and services. We can work from anywhere. Learn from anywhere. Shop and surf from anywhere, on any device. But so can the bad guys. What is Cyber Security Awareness Month? Back in 2004 when more of the global interactions…

MFA Fatigue: A Growing Security Concern

The internet has never faced so much existential risk from people who want to harm companies and their users. While many organizations understand that there’s a link between identity and security, few fully grasp how foundational identity is to a modern security strategy. Organizations with gaps in their identity security are significantly more at…

Okta Passkey Management: A New Feature Flag

Apple recently announced support for Multi Device FIDO credentials - also called passkeys. Passkeys allow users a passwordless login to all of their iOS and macOS devices. Passkeys provide a better user experience across websites and apps, and enhance security by virtue of being a standards-based technology that–unlike passwords–is resistant to…

Okta Helps Federal Agencies Easily Deploy Phishing-Resistant MFA

A recent report from the Anti-Phishing Working Group (APWG) revealed phishing attacks for the first quarter of 2022 exceeded one million—the highest on APWG record. As attacks increase, it’s reasonable to expect targeted phishing attacks to increase as well. The U.S. government is defending itself against this growing threat via mandates and…

What Is Multi-Factor Authentication (MFA)?

MFA stands for multi-factor authentication, an identity verification method. MFA adds an extra layer of security on top of credentials like usernames and passwords. By doing so, it provides greater certainty that a user is who they claim to be before granting them access to an application, online account, or corporate network. MFA is a critical…

Cyber Insurance Providers Are Now Requiring Multi-Factor Authentication

Cyber insurance is a promising tool companies can leverage to mitigate the risks of cyber attacks, data breaches, and business disruption. Just like with all forms of insurance, businesses need to ensure they’re protected against loss when the unexpected happens. Moreover, certain steps need to be taken—or criteria met—in order to remain insured…

Multi-Factor Authentication

Tags

Archive