We have no such inordinate expectation that all the identity professionals should be aware of the power and merit of making use of citizens’ episodic memory for building a solid identity assurance platform.
However, we expect the people who are viewed as identity professionals to be familiar with, at least, these basic points taken up in “What We Know for Certain about Authentication Factors” https://www.linkedin.com/pulse/what-we-know-certain-authentication-factors-hitoshi-kokumai
It’s not an excessive expectation of the professionals, is it?
Fore more, refer to this collection of digital identity comments — https://www.linkedin.com/pulse/collection-digital-identity-comments-hitoshi-kokumai-posted-kokumai/
Start using Modern Auth now for Exchange Online
https://www.theregister.com/2022/06/29/cisa-microsoft-modern-auth/
It is good to see the merit of MFA emphasized. Not seeing it emphasized that MFA must mean ‘Multi-Layer/in-series’, not ‘Multi-Entrance/in-parallel’ is not good in view of the present awkward situation that not a few security people have been, whether knowingly or unknowingly, mixing them up and have thus…
New biometric laws needed urgently, review finds
Ryder Review calls for a new statutory framework to follow before biometric technology can be deployed against members of the public https://www.thinkdigitalpartners.com/news/2022/06/29/new-biometric-laws-needed-urgently-review-finds/
Should it now cover only the issues of biometrics for ‘individual identification’, the scope could hopefully be expanded to cover ‘identity authentication’ as well.
The two major issues to be examined are the lack of transparency with respect to:
1. empirical false acceptance rates and corresponding false rejection rates measured in the actual use environments, both indoor and outdoor,
2. security effects of biometrics deployed with a default/fallback password.
Ref: “Biometrics Unravelled | password-dependent password-killer” https://www.linkedin.com/pulse/biometrics-unravelled-password-dependent-hitoshi-kokumai/
National Guardsmen may soon use personal electronics in deployments
I would like to believe that they are not so reckless as to listen, however loud it may be, to the voices of urging removal or skip of the password from login process
What would happen should they listen? — devastation!
These discussions might hopefully encourage them to think twice in order to not see a disaster — “LOSS of Security Taken for GAIN of Security” https://www.linkedin.com/pulse/loss-security-taken-gain-hitoshi-kokumai/
