cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Champion

Re: Authentication controls - PIN vs Usrnm/Password

You should probably consider binding in a third party app as well, SSO, CASB,  as well as lockout on your phones/tablets and into your mobile apps and of course MAM to go with MDM.

 

A lot of these have the concept of intelligent authentication bakes in the info about the authentication as well as anti-malware and other bits and pieces and if they are any good they will protect the credentials, and step-up or step down or even lockout functions* as needed):

 

https://swivelsecure.com/solutions/intelligent-authentication

https://global.blackberry.com/en/enterprise/blackberry-enterprise-mobility-suite

http://appconfig.org

https://www.okta.com/products/

https://vip.symantec.com

 

Users notice very quickly if they lose their phones. 

 

If the user does get coerced, then unless you have panic buttons, plausibly deniable codes to enter etc then  an attacker will get in:

 

https://xkcd.com/538/

 

It's all the more layered, and I trust well-implemented PIN'n'In much more than I do loads of passwords.

 

In the future:

 

http://www.patentlyapple.com/patently-apple/2018/01/apple-won-44-patents-today-covering-heart-rate-m...

 

*  This phone seems compromised, therefore will have minimal trust etc.