Authentication

Phishing resistance first Phishing-resistant authentication is the current baseline for secure authentication, which means FIDO/WebAuthn, FastPass, PIV/CAC, etc. This post will focus on how those already meeting this baseline can take security to the next level. Passwords, SMS, push notifications, and one-time codes are vulnerable to much less…

In recent years, cyberattacks have increased significantly. Data breaches and phishing attacks have become common threats to individuals and businesses. According to the FBI’s Internet Crime Complaint Center, organizations lost $12.5 billion to cybercrime in 2023 alone, a nearly $10 billion increase from 2019.  With no current way to protect…

Security questions are a common method of identity authentication—one you’ve probably encountered before. When creating an account or signing up for a service online, users will confidentially share the answers to secret questions with a provider.  Typically, these security questions and answers are used for self-service password recovery…

If a data breach happens at your organization,  you can’t afford to compromise on the speed and efficacy of your response. For the best possible defense against cybersecurity threats, security leaders need a comprehensive approach to Identity-powered security that supports risk mitigation in scenarios when would-be attackers have already exploited…

As the frequency and sophistication of cyberthreats continue to rise, organizations must urgently enforce phishing-resistant authentication protocols across every device and system.  Stolen credentials are the leading initial vector of attack in successful breaches, which means security teams need to arm themselves with a robust Identity strategy…

Single sign-on (SSO) is an authentication tool that enables users to securely access multiple applications and services using one set of credentials, eliminating the need to remember different passwords for each service. In today’s remote work ecosystem, where employees rely on software-as-a-service (SaaS) applications like Slack, Google Workspace…

Security leaders today need to adopt a comprehensive approach to Identity-powered cybersecurity that extends beyond multi-factor authentication (MFA) and single sign-on (SSO) to mitigate threats before, during, and after authentication-based attacks. This approach begins pre-authentication with a strong Identity posture capable of discovering…

Website logins. Mobile apps. Customer support portals. Chat. Digitizing the user experience means most companies have vast amounts of data on their clients, collected across multiple channels and stored in different systems.  Depending on the jurisdiction, industry, or type of data, your organization must comply with many regulations governing…

Updated: February 7, 2025 “Nothing happens until someone tries to log in to something” - Ancient Authentication Proverb For as long as we can remember, users have had to choose between strong, secure authentication and a great, friction-free user experience. Now, you don’t have to. Okta’s FastPass is a first-of-its-kind, robust, secure-by-design…

There’s never been a better time to upgrade to Okta Identity Engine (OIE). The self-service upgrade process has matured and helps ensure your org's upgrade will be successful. In fact, most upgrades take only a few minutes to complete. Already on OIE? Skip ahead to No. 3  “Leverage OIE” to learn how you can strengthen your security posture. Why…