Security News > 2023 > June > Beyond MFA: 3 steps to improve security and reduce customer authentication friction
Well-designed MFA methods continue to have a place in an organization's security ecosystem, and MFA is required to comply with many global regulations such as HIPPA, Payment Card Industry Data Security Standards, the Cybersecurity and Infrastructure Security Agency, GDPR, and the EU's Payment Services Directive 2.
Organizations need protections that go beyond MFA. But MFA controls also generate considerable friction, causing customer frustration and negatively impacting business revenue.
With these in hand, criminals can bypass MFA and access accounts without providing authentication factors.
MFA controls are valuable but no longer sufficient to protect online apps and accounts; even CISA recognizes the limitations of traditional MFA. And MFA already causes substantial irritation to valuable returning customers.
A new generation of advanced technologies, such as adaptive bot mitigation software, ML-based account protection technologies, and smart digital identity verification and authentication platforms enhance the power of conventional MFA. Organizations should take the following three steps to augment MFA and provide more comprehensive protections for apps and online accounts, without increasing user friction.
Advanced new technologies can augment traditional MFA controls with sophisticated AI and ML modeling to provide real-time protections across the user journey, without increasing friction for your best customers.
News URL
https://www.helpnetsecurity.com/2023/06/14/mfa-controls-limitations/