The most critical security threats facing enterprises today are attacks targeted at user credentials. The average number of credential theft incidents has tripled over the past two years, and today, 81% of all hacking-related breaches leverage either stolen and/or weak passwords. Using passwords alone as a means of defence for organisations simply…

The Lightweight Directory Access Protocol (LDAP) is an internet protocol that enterprise programs such as email, CRM, and HR software use to authenticate access and find information from a server. It is open, vendor-neutral, well supported, and flexible enough for storing information on internal and external users alike. Because of its scalability…

Usernames and passwords have long been the standard when it comes to authentication, but it’s become very clear that this approach to security is fundamentally broken. The good news? Modern authentication technologies are making it possible to secure access in new ways and finally leave passwords behind. MFA leads the way The secret to doing away…

The Forrester Zero Trust model, which has been around since 2009, argues that organisations should regard all network traffic as untrusted, regardless of where it’s coming from. The idea of a trusted internal perimeter leaves the organisation at risk if that perimeter is compromised or an insider turns malicious. Of course, the situation has…

TL;DR: Building login and multi-factor authentication (MFA) for custom apps can be challenging, time-consuming, and risky. This post provides the top tutorials and SDKs that can be used to quickly leverage login and MFA provided by Okta. Your developers can streamline development and focus on building the best user experience, while you control…

As organisations continue to move critical services into the cloud, having strong, centralised identity becomes the foundation of a holistic security strategy. Continuing our efforts to support customers who use Okta to protect Cardholder Data Environments, we are pleased to announce that Okta has released a PCI-DSS Attestation of Compliance (AOC)…

Trust is the cornerstone of any successful customer relationship and organisations now have more opportunities than ever to gain that trust. In today’s interconnected world, companies are constantly handling sensitive customer data—and how they use and secure that data plays a huge role in determining the trust customers place in them. A breach…

Biometric authentication — using the unique biological characteristics of an individual to verify their identity — has been around since the dawn of humankind. Think about it: humans use facial and voice recognition every day to identify each other. Signature recognition came about when the first contracts were originally created, and fingerprints…

Active Directory Federation Services (ADFS) is a Single Sign-On (SSO) solution created by Microsoft. As a component of Windows Server operating systems, it provides users with authenticated access to applications that are not capable of using Integrated Windows Authentication (IWA) through Active Directory (AD). Developed to provide flexibility,…

The traditional perimeter which protected IT assets on the corporate network has become irrelevant. The proliferation of cloud-based services, such as email and online file sharing, being used to augment conventional in-house IT systems, and the rise of mobility where remote access from anywhere is required by your employees, partners and even…