Engineering

What is Public Key Pinning? Normally, traffic between a client application and its server-side relies on Public Key Infrastructure (PKI). While this mechanism is sufficient for most internet traffic, the Okta Secure Identity Commitment requires us to consider advanced, persistent, targeted attackers, even including nation state-level actors. Okta…

In the dynamic field of engineering, the journey to success is often filled with thrilling highs and challenging lows. Whether it’s the exhilaration of a breakthrough, the stress of balancing demanding projects, or the pressure of an urgent hotfix, engineers face numerous obstacles.  However, with the right guidance and support, many of these…

Okta is constantly evolving our cloud infrastructure to meet the needs of our customers. We place reliability and scalability at the core of our design decisions for services that process billions of authentications per month. This article dives into how a recent project to remove one of our most heavily trafficked services yielded significant…

Image generated using DALL·E 2   This blog explores the robust security benefits of phishing-resistant authenticators, which can significantly bolster an organization’s cybersecurity measures beyond the scope of phishing attacks. The percentage of phishing-resistant authentications serves as a tangible indicator of an organization’s proactive use…

What is the Snowpipe Streaming API The Snowpipe Streaming API is a new Snowflake innovation that exposes a streaming API that can be used to connect and write directly to a Snowflake database using your own managed application. This prompts low-latency loads of streaming data rows using the Snowflake Ingest SDK and your own managed application…

Contributing to approximately 60% of all social engineering attacks and 36% of all data breaches, phishing claims the number one spot among cybercrimes. With 80–90% of all compromises originating from an unmanaged device, unmanaged iOS devices deserve a place at the top of your security concerns.     Okta FastPass Okta FastPass protects users…

Image generated using DALL-E Background Okta’s inbox platform supports various products in Okta’s Workforce Identity Cloud, where human input is required. It is most notably instrumental in the Access Request flow of Okta Identity Governance. A lot of what we do is trigger-based. These triggers can be a human action — “grant access when the…

As the digital landscape evolves, the need for robust security measures becomes increasingly critical. Organizations are constantly exploring innovative ways to ensure secure access to their systems and data. In this pursuit, Okta has taken a significant step forward by integrating its device assurance policies with Google's Device Trust Connector…

At Okta, we firmly believe in the power of diversity and inclusivity to drive innovation and success. Recently, our Women in Technology group had the privilege of organizing an extraordinary event for women on our Workforce Identity Cloud (WIC) Engineering team that celebrated the incredible women on our team and paved the way for future growth…

In today's rapidly evolving tech industry, women continue to face unique challenges and underrepresentation. To build and nurture a culture of diversity, technology companies need to provide platforms for employees of all identities to develop skills, learn from each other, and celebrate their achievements. One such powerful tool is tech talks. …