Passkeys enhance security and usability as AWS expands MFA requirements
Security Blog
This article discusses AWS's announcement of support for FIDO2 passkeys as a method for multi-factor authentication (MFA) and their plans to expand MFA requirements for privileged users in AWS accounts.
Specifically, the article covers:
- AWS will require MFA for root users of standalone accounts (not managed by AWS Organizations) starting in July 2024, gradually rolling out over several months.
- AWS is launching support for FIDO2 passkeys as an MFA method to help customers meet the new MFA requirements.
- Passkeys are a more secure and user-friendly form of MFA compared to one-time passwords (OTPs).
- The decision to support passkeys aligns with AWS's commitment to the CISA's Secure by Design pledge, which aims to increase MFA usage.
- Recommendations on when to use passkeys versus other forms of MFA based on security requirements and use cases.
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
Jun 11
2024
2024
AWS adds passkey multi-factor authentication (MFA) for root and IAM users
Jun 11
2024
2024
AWS Identity and Access Management now supports passkey as a second authentication factor
Nov 15
2024
2024
Secure by Design: AWS enhances centralized security controls as MFA requirements expand
Jun 17
2024
2024
AWS Weekly Roundup: Passkey MFA, Malware Protection on Amazon S3, and more (June 17, 2024)
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.