OM-BP-0009: Use robust factors for MFA (Best Practice)
ID | OM-BP-0009 |
---|---|
Name | Use robust factors for MFA |
Status | Active |
Version |
|
Best Practice | Do not use SMS or voice as a second factor for MFA. Use an authentication app or a physical token. |
Rationale
…
Bad Practices
Use SMS or voice as a second factor for MFA.
Implementation Details
…
Quotes
Adopt MFA
Multi-factor authentication can stop credential-based attacks dead in their tracks. Without access to the additional factor, the attacker can’t access the account or protected resource. MFA should be mandatory for all admin accounts and is strongly recommended for all users. The preferred method is to use an authenticator app rather than SMS or voice where possible.
Bibliography
Related Best Practices
Follow us on LinkedIn | Discuss on Slack | Support us with Patreon | Sign-up for a free membership.
This wiki is owned by Open Measure, a non-profit association. The original content we publish is licensed under a Creative Commons Attribution 4.0 International License.