Only if we enforce FIDO-only MFA and block legacy authentication via SMS, Call and Authenticator App we are truly phishing-resistant.
WebAuthn is a requirement, but not always available. Some legacy Apps use WebViews without Webauthn support.
Detached FIDO Authentication is the answer.
We are looking forward to your feedback and hopefully improvement ideas.
Readit News
Only if we enforce FIDO-only MFA and block legacy authentication via SMS, Call and Authenticator App we are truly phishing-resistant.
WebAuthn is a requirement, but not always available. Some legacy Apps use WebViews without Webauthn support.
Detached FIDO Authentication is the answer.
We are looking forward to your feedback and hopefully improvement ideas.