New Blog | Advancing Cybersecurity: The Latest enhancement in Phishing-Resistant Authentication

Today, I’m excited to share with you several new developments in the journey towards phishing-resistant authentication for all users!  This isn’t just essential for compliance with Executive Order 14028 on Improving the Nation's Cybersecurity but is increasingly critical for the safety of all the orgs and users who bet on digital identity.

TL;DR? Here’s the cheat sheet!

• Microsoft Authenticator announces phishing-resistant passkey support.
• Microsoft Authenticator is FIPS 140-3 compliant on all platforms.
• More configuration options for PIV/CAC authentication.
• FIDO2 support for iOS and MacOS applications.
• Managed policies help you with “secure by design, secure by default.”

Details below!

Microsoft Authenticator is becoming phishing-resistant!

As announced at Ignite 2023, in the first half of 2024, Microsoft Entra ID users will soon be able to register and sign in with device-bound passkeys managed in the Microsoft Authenticator app. This is a cost-effective, phishing-resistant credential available to anyone with the Authenticator app! Passkeys provide you with the latest and greatest security enhancements that will come to the FIDO standard over the next many years – and Authenticator integration lets you take advantage of the security innovations and advanced features Authenticator provides.

Figure 1: Passkey managed in the Microsoft Authenticator app

To further enhance Microsoft Authenticator and help customers meet compliance requirements, the Authenticator App on Android is now FIPS-140 compliant.

Read the full blog post here: Advancing Cybersecurity: The Latest enhancement in Phishing-Resistant Authentication - Microsoft Community Hub