Well-designed multi-factor authentication technologies, especially when paired with a mobile device or other token, mitigate security risks from single factor username/password authentication while still providing a positive user experience.
Many MFA solutions, especially in the cloud, introduce the need for a third party credential service provider. This design introduces a new security risk as the CSP itself has become a target for man-in-the-middle attacks. This presentation will explore criteria and considerations that organizations can use when operating internal credential management or selection of third party CSPs to minimize risk.
With the merger of AOL+Yahoo, the newly formed Enterprise Identity team had the challenges of planning to support the cloud-first future of the new company Oath (which would become Verizon Media), building a new Identity ecosystem with Zero-Trust methodologies, and supporting a security-minded culture.
Learn the strategies they used to create and iterate improvements in service delivery, foster security in all interactions. and positively affect how Verizon Media workers engaged with technology solutions in the new company.
