passwordless authentication

This blog post is the second in a series focusing on credential phishing. Previously, in the blog The Need for Phishing-Resistant Multi-Factor Authentication, Mukul Hinge explained how threat actors are becoming more sophisticated, using various tools to overcome mitigations. Today’s post digs into the inner workings of Okta FastPass, explaining…

MFA stands for multi-factor authentication, an identity verification method. MFA adds an extra layer of security on top of credentials like usernames and passwords. By doing so, it provides greater certainty that a user is who they claim to be before granting them access to an application, online account, or corporate network. MFA is a critical…

It’s not easy to find a public example of a commercial or enterprise organization that has advanced exceptionally far in their customer identity and access management (CIAM) journey. At a fundamental level, a company’s ability to secure their business and their customers is in constant competition with bad actors. While organizations develop an…

The world has increasingly become mobile-first, with customers demanding seamless experiences across all of their devices to interact with brands, services, and products. But when it comes to building these customer experiences, developers are often forced to make tradeoffs between usability and security—difficult choices that inevitably decrease…

Biometric authentication is a security process that compares a person’s characteristics to a stored set of biometric data in order to grant access to buildings, applications, systems, and more. With cybercrime, fraud, and identity theft on the rise, it’s more important than ever for businesses to help customers and employees verify their identity,…

Data security is the protection of digital data and accounts in accordance with laws and industry standards in order to mitigate risks and repel attackers. It encompasses business data, employee information, and customer and user data. If that sounds multifaceted, it is: putting data security into practice isn’t one size fits all. With companies…

We’re all tired of passwords. Employees are tired of remembering them, IT teams are tired of resetting them, and security professionals are tired of dealing with them as a major threat vector when it comes to data breaches. In addition to our frayed relationship with passwords, they also pose a threat to productivity across an organization…

In today’s threat landscape, passwords have become increasingly ineffective for protecting customer authentication and data—and they’re also unintended inhibitors for user experience. As such, it’s not surprising that many organizations are exploring passwordless authentication as a more secure, user-friendly alternative. In our previous post in…

Enterprises have traditionally relied on passwords to log their employees into their accounts and services—but the practice is coming under increased scrutiny due to more modern and secure passwordless alternatives. In a previous post, we explored how businesses can adopt passwordless authentication through alternatives like factor sequencing,…

Let’s face it: we’re all tired of passwords. They’re a major pain for users and not nearly as effective at securing accounts as they pretend to be. Thankfully, there is a better way! We are excited to announce a new set of passwordless capabilities in Okta that will allow you to deliver seamless auth experiences to all users! In this post, we’ll…