If I wear my EUC security hat, I understand why something like this is being implemented.
-
RE: https://infosec.exchange/@merill/116203323789181775
If I wear my EUC security hat, I understand why something like this is being implemented. If I wear my OSS, or security testing hat, I can see this is going to be unpopular for certain groups of people.
-
RE: https://infosec.exchange/@merill/116203323789181775
If I wear my EUC security hat, I understand why something like this is being implemented. If I wear my OSS, or security testing hat, I can see this is going to be unpopular for certain groups of people.
I would expect the security folks to be using passkeys. Why install an authenticator app when you can use the native OS feature...
-
I would expect the security folks to be using passkeys. Why install an authenticator app when you can use the native OS feature...
@merill Don't get me started on passkeys ... I meant for security and mobile app testers, they will often jailbreak devices and sideload apps. Also for BYOD there seem to be some challenges ... https://techcommunity.microsoft.com/discussions/identityauth/microsoft-authenticator-passkeys-for-entra-id-on-unmanaged-devices/4365430/replies/4478355
-
R relay@relay.infosec.exchange shared this topic
