Cisco Duo Next Level MFA: Not All MFA Solutions Are Created Equal
Counter the new wave of cyber threats with phishing-resistant MFA measures that rewrite the playbook on how to verify users.
Phishing tactics continue to evolve, outsmarting what once were adequate multi-factor authentication (MFA) solutions. MFA fatigue, push and adversary-in-the-middle (AITM) attacks challenge your perimeter in new ways and require a more rigorous response. An MFA and access management innovator, Cisco Duo continues to pioneer new approaches that keep your business a step ahead of the next threat.
What is Phishing-Resistant MFA?
The US Cybersecurity and Infrastructure Security Agency (CISA) calls it the gold standard for MFA. Phishing-resistant MFA relies on credentials that attackers cannot trick you into sharing. Typically, this is something innate to you – like a fingerprint – and something in your possession – like your smartphone. Duo utilizes FIDO2 authentication methods to eliminate the need for a password, making it easier and more secure for your employees to access corporate applications.
Protect Against Push Attacks
MFA fatigue—your users feel it, and attackers are ready to exploit it. Bad actors spam a user with fraudulent authentication requests until they just give up and click Accept, assuming it’s from a legitimate source. Verified Duo Push protects against push attacks by requiring users to enter a verification code while approving a Duo push authentication request, so users can’t accidentally grant access with a misplaced click. Duo then directs users to a fraud report option to help your IT team chase down the threat. That’s not the only way to strengthen your MFA implementation and reduce authentication fatigue. Additional Duo features offer increased protection to fit your business needs including:
Risk-based remembered devices
Risk-based factor selection
Trusted endpoints
Device health verification
SAML and WebAuthn protocols
Strong, Self-Service MFA
Strong MFA can protect your business without burdening your IT department. With Duo, users can enroll themselves and choose their preferred authentication methods. The Duo Self-Service Portal makes it easy to upgrade a device, add multiple devices to a user’s profile, and remove devices. Users can edit preferences at any login prompt.
Single Sign-On, Many Benefits
Single Sign-On (SSO) offers convenience for end users while increasing enterprise security. Funneling your people into Duo’s cloud-based SSO ensures they’ll be using the strongest MFA. Developers and administrators also benefit from the multiple integrations Duo SSO offers, including SAML v2.0 and new support for OpenID Connect and AWS Verified Access, extending the reach of MFA and trusted access across your enterprise.