Successful implementation of multi-factor authentication still requires successful adoption, meaning it's important to give your users choices on which authentication methods they want to use, while still supporting your own security goals. We're focused on providing the widest range of flexible options for you to choose from, so we've added new authentication methods to PortalGuard IDaaS and for PortalGuard versions 6.5.2.1 and later.
Here's a quick summary of the new authentication methods for you to consider:
If you're using hardware tokens for authentication, consider using BIO-key FIDO-keys. Our new FIDO-key Security Keys are compatible with FIDO U2F, FIDO2, and WebAuthN standards for easy and secure online authentication. With six different models to choose from, including a biometric option, FIDO-keys are great, low-cost alternatives to other providers, such as Yubikey and RSA SecureID.
Authy, owned by Twilio, is a worldwide player in the multi-factor authentication space and a cost-effective alternative to other providers, such as Duo Push. Authy Push is a true "out-of-band" second factor and allows end-users to confirm or deny the login request by interacting with a real-time app on their mobile phone. No One Time Passcodes (OTPs) need to be remembered or typed so in addition to being more secure it is also more user-friendly.
PortalGuard has long supported voice OTPs, where the user receives a phone call that uses automated Text-To-Speech to read the OTP to the user. The user then types the OTP in and submits it to complete the authentication.
This PortalGuard update adds support for Twilio as a third-party messaging provider. This ensures customers have access to enterprise-class solutions like Twilio in as many aspects of PortalGuard as possible. The Voice OTP continues to be available for all authentication actions, including browser-based authentication, VPN/RADIUS, password reset, and Desktop MFA.
With these new authentication methods to offer your users, you can greatly improve their user experience and increase user adoption while also maintaining a high level of security.
Make sure to ask the BIO-key team about any authentication options you may be considering.