MFA

In 2017, the New York Department of Financial Services (NYDFS) issued new requirements concerning Identity and Access Management (IAM). The intent was clear: to protect institutional and customer data by requiring multi-factor authentication (MFA) or equivalent measures. In practice, however, the strengthening of Identity-based security has been…

Research by Okta Security found that organizations targeted by prolific threat actors almost always enroll their users in phishing-resistant methods of sign-in. Given the low cost and complexity of moving users to stronger authenticators, why wait to be targeted? Okta research has found that while the rate of growth in MFA adoption is slowing, the…

Maintaining a technology stack that scales to meet the needs of employees, partners, and customers is increasingly complex, yet the stakes for managing app and data access are higher than ever. The tools and strategies that chief information officers and IT directors implement for managing identities and access have a direct impact on security…

How we’ve fortified security in Okta Developer Edition Service Securing customer-facing services or developer playgrounds is paramount in this age of software development. This post discusses various strategies and measures that we have adopted to fortify our Developer Edition Service. Join us as we walk you through our journey of establishing…

For financial service providers, enabling convenient and seamless payment while keeping sensitive customer information safe is paramount. In 2006, a group of providers founded the Payment Card Industry Security Standards Council, a global forum meant to develop and maintain guidelines and standards to secure payments and cardholder data. The…

In a previous blog about Okta Identity Security Posture Management, we discussed the challenges and potential solutions that enterprises face when dealing with local account management and security. Today, we’ll look into an example of a solution for security teams, regardless of the application that creates local users. What we’ll explain is…

Nonprofits acquire new technology with optimism, looking forward to how these newly obtained tools will strengthen their operations and amplify their impact. Success with new technology is easily achievable for established nonprofits with big budgets and available technical skills. But for smaller organizations, which are often under-resourced and…

A one-time password is a secure authentication code that works just once, and for a short duration, to verify a user’s Identity before expiring, eliminating the risks of password reuse across multiple accounts. Key takeaways Multi-layered protection: OTPs can strengthen security as part of multi-factor authentication (MFA) by requiring a unique,…

For healthcare organizations improving clinician efficiency affects patient outcomes, making it a necessity rather than a simple goal. Organizations are under immense pressure to streamline operations, enhance patient care, and maintain robust security measures. Identity and Access Management (IAM) solutions have become criticalor achieving…

Small and midsize businesses (aka SMBs) are the young, scrappy, and hungry companies that drive business change, leading the way in embracing new technologies. We know that's true for engineering, automation, and AI. But what about security? In our report, SMBs at Work 2024, we explore the dynamic digital landscape of SMBs today. Powered by…