security

WebAuthn: Growth and challenges

In this article, we will cover some of the characteristics of FIDO2 WebAuthn, which give it an edge over other authenticators (factors). We will also dive into the usage and growth of WebAuthn from Okta’s perspective, along with some of the challenges we are trying to solve for customers here at Okta. WebAuthn (Web Authentication) is one of the…

Keys to high-quality service releases at Okta

Okta’s product release cadence At Okta, there are 12 monthly releases for General Availability of new features and there are weekly releases for Early Availability of new features, security patches, bug fixes, and non-customer-facing backend changes.      Every release train spans a three-week window wherein the deployment to the Dev-Test…

A summary of Okta’s FIPS compliance

Last updated Friday, December 13, 2024.   Federal Information Processing Standards (FIPS) are security standards developed by the National Institute of Standards and Technology (NIST). For organizations to adhere to  FIPS compliance, the system or product must meet configuration standards and pass rigorous audits through regular third-party…

Why we sunset the Okta Verify watch app

In the most recent version of Okta Verify for iOS (8.2), we decided to sunset the companion watch app. This blog aims to explain our thinking and share knowledge. Watch apps are cool. Pulling out your phone to accept an MFA push notification is not a great experience. Why would anyone sunset such great functionality? In a nutshell, you don’t need…

Cybersecurity for the world’s most vulnerable

As part of Okta’s social impact work, we have the privilege of working with some of the world’s largest nonprofit and humanitarian organizations. These groups are the first to jump to action when people around the world need support.  Many of us intuitively understand the need for these organizations to focus on the physical safety of those they…

Desktop MFA from Okta — Its time has come

The password has been much maligned since its creation, and deservedly so. Even Fernando Corbató, the MIT computer scientist who created the password, said it had become “kind of a nightmare.” However, Corbató could not have conceived of the hundreds of passwords we now use and the proliferation of complex rules to overcome the weakness of the…

Archive