Mary Branscombe on Twitter: "I often snark SMS MFA so it's nice to see a phishing-resistant MFA that brings FIDO options (Yubikey initially) to orgs that have smartcards and want to get away from ADFS into the cloud without distributing certs to phones: @Alex_T_Weinert tells me more https://t.co/Gnvpb7dtaI" / Twitter

I often snark SMS MFA so it's nice to see a phishing-resistant MFA that brings FIDO options (Yubikey initially) to orgs that have smartcards and want to get away from ADFS into the cloud without distributing certs to phones:

@Alex_T_Weinert

tells me more

techrepublic.com

Unphishable mobile MFA through hardware keys

With Azure AD and FIDO security keys, you can make MFA more secure and avoid having to provision certificates on everyone’s phones.

9:00 PM · Feb 1, 2023

204

Views

Replying to

while we discussing just how hard it is to secure on-prem infrastructure

@Alex_T_Weinert

told me about one data breach where even having an HSM wasn't enough and I think my response was a rather loud YIKES

techrepublic.com

Unphishable mobile MFA through hardware keys

With Azure AD and FIDO security keys, you can make MFA more secure and avoid having to provision certificates on everyone’s phones.

Conversation