• New NIST guidance on passkeys: Key takeaways for enterprises NIST recently released an update to SP800-63B to provide guidance on syncable authenticators. As FIDO passkeys continue becoming more adopted and available at a large scale, NIST guidance helps organizations properly position and plan so they can successfully implement synced passkeys both internally and externally.  Within the guidance, it’s important to understand the nuance of […] Read more government NIST passkeys phishing-resistant MFA
• Modern authentication for the Department of the Air Force Download the free brochure to learn how the YubiKey solves U.S. Air and Space Force modernization uses cases. Read more government phishing-resistant MFA YubiKey
• Securing Department of Corrections with modern, phishing-resistant MFA Learn how the YubiKey stops modern cyber threats such as phishing attacks and account takeovers across the Department of Corrections, with CJIS compliant phishing-resistant multi-factor and passwordless authentication. Read more government passwordless phishing-resistant MFA YubiKey
• Australian government leads efforts toward phishing-resistance Over the last few weeks, the Australian government has made big strides in further bolstering its digital security posture by enacting major cybersecurity measures. Australia has a goal to be a global leader in cybersecurity by 2030, and these recent measures are making impactful steps toward reaching this mission. First, the government announced that myGov […] Read more Australia government phishing-resistant MFA
• Modernizing authentication across the Department of Defense with phishing-resistant MFA Learn how the DOD-approved and FIPS 140-2 validated YubiKey is helping the federal government with phishing-resistant multi-factor authentication (MFA) for modern use cases not supported by the PIV and CAC Read more government modern authentication phishing-resistant authentication
• FIDO Alliance releases U.S. government adoption guidance on FIDO authentication Many federal agencies have been using FIDO authenticators to enable secure access to systems for a variety of use cases. However, they have been deployed in varied configurations and there was a lack of guidance on how to implement the credentials. With the release of a new whitepaper, FIDO Alliance Guidance for U.S. Government Agency […] Read more FIDO FIDO Alliance government
• What CISA and NSA’s ESF guidance means for critical infrastructure cybersecurity The Cybersecurity Infrastructure Security Agency (CISA) and the National Security Agency (NSA) recently collaborated to produce an important new document, “Identity and Access Management: Recommended Best Practices for Administrators.” Part of the Enduring Security Framework (ESF), it presents a distillation of identity access management (IAM) and cybersecurity guidance put forth by CISA to date, based […] Read more CISA critical infrastructure ESF government NIST
• Amazon Web Services announces support for FIDO2 security keys Amazon recently announced improved support for using FIDO2 security keys as an MFA device to log on to the Amazon Web Services (AWS) console. As a result, FIDO2 security keys like the YubiKey are now supported on AWS GovCloud (US region) – providing phishing-resistant MFA for all users.  Additionally, AWS has improved their support for […] Read more Amazon Web Services AWS FIDO2 GovCloud government IAM
• CISA’s new Zero Trust Maturity Model gives MFA a push – Yubico The long-awaited second version of the Cybersecurity and Infrastructure Security Agency’s (CISA) Zero Trust Maturity Model (ZTMM) is here after more than a year of public comments and agency responses. The latest model points federal agencies, and all organizations that work with them, toward a Zero Trust security architecture. The White House laid the groundwork […] Read more CISA Executive Order government zero trust
• The White House’s National Cybersecurity Strategy and Pandemic Anti-Fraud Proposal: Three things you should do to respond now On March 2, the White House made a clear and important announcement to the tech sector regarding cybersecurity efforts moving forward: “We must rebalance the responsibility to defend cyberspace by shifting the burden for cybersecurity away from individuals, small businesses, and local governments, and onto the organizations that are most capable and best-positioned to reduce […] Read more Executive Order government National Cybersecurity Strategy zero trust