A year ago, the multifactor authentication system your team designed and deployed fit your organization's needs perfectly... and sailed through the cybersecurity audit too. But adversaries are now smarter. TTPs are more broadly marketed, and MFA regulations are either already updated or about to be.
This webinar will highlight recent changes in both public and private sector cybersecurity regulations that impact MFA implementations. We'll explore new benchmarks for authentication methods, examine how some regulations have raised the standards for acceptable tokens and methods, and discuss the implications for organizations moving forward.
Additionally, we'll discuss how organizations can achieve enhanced security while simplifying the end-user experience by leveraging passwordless authentication methods such as Certificate-Based Authentication and FIDO2 standards.
Attendees will learn:
· How organizations like the FBI, PCI SSC, and CISA have updated their MFA recommendations to counter advanced threats.
· Why certain authentication methods—such as one-time passwords (OTPs), push notifications, and out-of-band messages—are now considered less secure and may not meet current compliance standards.
· The role of frameworks like FedRAMP and CMMC in guiding federal agencies and departments, including their limitations.
· How implementing passwordless authentication using certificate-based authentication CBA and FIDO2 can enhance security while simplifying end user experiences.