Collaborate Disseminate
No, I’m not declaring another thing in identity management dead. Instead, I’d like you to join me in exploring something that has been bugging me quite a bit lately. Risk-based Authentication can cover a spectrum of capabilities, but most g… Continue reading Will GDPR Kill Risk-Based Authentication?
The last few years have seen an uptick in efforts to use biometrics more widely in authentication, most notably driven by the consumerization effect of Apple introducing Touch ID and Face ID. But this could be the (strong) nudge that was needed to push… Continue reading Securing Our Biometrics-Based Future
Back in 2013, I opened my ‘Hitchhikers Guide to Identity’ talk with the following slide. As an industry, we’ve come a long way since then. Multi-factor Authentication is mainstream, as is Paul Madsen’s t-shirt contest at CIS. Most companies are no longer debating whether their security can be entrusted to cloud-based solutions, as IDaaS solutions…
The post My Next Gig: Delivering the Identity-Defined Perimeter with Uniken appeared first on Talking Identity | Nishant Kaushik’s Look at the World of Identity Management.
Continue reading My Next Gig: Delivering the Identity-Defined Perimeter with Uniken
So I waited patiently for the folks at the Cloud Identity Summit to publish on their Youtube channel the talk I gave earlier this year on Invisible Identity. But it never came. Turns out that a few session recordings got messed up, and unfortunately mine was among them. I sense Paul Madsen’s hand in this….
The post Invisible Identity, or How to Delight People & Secure Users appeared first on Talking Identity | Nishant Kaushik’s Look at the World of Identity Management.
Continue reading Invisible Identity, or How to Delight People & Secure Users
In my last post regarding weaknesses in how 2FA is implemented in the systems we rely on to secure us, I teased a thought that had occurred to me in going through the analysis I presented in the post. As usual, life intervened to distract me, but this recent post by Coinbase sharing their experience of…
The post Doing 2FA Better Could Mean Using Social Factors appeared first on Talking Identity | Nishant Kaushik’s Look at the World of Identity Management.
Continue reading Doing 2FA Better Could Mean Using Social Factors
Two Factor Authentication (or 2FA) has been in the news a lot recently. There was the kerfuffle over NIST putting into their update of 800-63 that SMS-based 2FA is insufficiently secure and should be deprecated (something most security experts agree on). That update (still in draft) came too late for the Social Security Administration (SSA),…
The post Doing 2FA Correctly Requires More Than 2 Factors appeared first on Talking Identity | Nishant Kaushik’s Look at the World of Identity Management.
Continue reading Doing 2FA Correctly Requires More Than 2 Factors
In part 1 of my blog post expanding on my Cloud Identity Summit talk on Invisible Identity, I proposed ‘The 4 Core Principles of Invisible Identity‘ that ensure that security and usability stay in a symbiotic partnership for an organization. I believe that adopting the concept of Invisible Identity will be vital to securing people in the…
The post Privacy in the World of Invisible Identity appeared first on Talking Identity | Nishant Kaushik’s Look at the World of Identity Management.