FB pixel

Biden goes broad and deep with order requiring MFA, zero-trust architecture

 

cybersecurity online authentication

Promising strategic changes and investments, Pres. Joe Biden signed an executive order pushing federal agencies to implement significant cybersecurity initiatives, including implementing a zero-trust architecture and multi-factor authentication (MFA).

It might be the first time that a U.S. president has even mentioned the phrase “zero-trust” in public statements, an indication that the immense heft of the federal government might be focused on a critical infrastructure blind spot in digital ID.

The FIDO Alliance issued a statement supporting Biden’s move.

As it is not dependent on cooperation from the Congress, the order means the federal civilian agencies have hard deadlines to, for example, deploy multifactor encryption and authentication schemes for data at rest and in transit.

Agency heads have 60 days to show how they will “prioritize resources for the adoption and use of cloud technology.” Also within 60 days, the White House wants each agency to create a plan for adopting zero-trust security in line with NIST digital identity and access management guidelines.

The Cybersecurity & Infrastructure Security Agency, for example, must modernize its efforts to be “fully functional” with zero-trust architecture cloud-computing environments.

Biden’s decision was forced by the hacking of the Colonial energy pipeline last week. It is not known to what extent the attack was unique or unprecedented (neither businesses nor government leaders eagerly discuss losses half as monumental as this).

But something like this as been feared and predicted since the birth of the internet.

Members of the FIDO Alliance spotlighted how the order prioritizes multi-factor authentication across the board. “It makes clear that priority is protecting every account,” according to the group’s statement.

Article Topics

 |   |   |   |   |   |   |   |   | 

Latest Biometrics News

 

UK school reprimanded by ICO for using facial recognition without DPIA

A school in Chelmsford, Essex, has been reprimanded by the Information Commissioner’s Office (ICO) for the unlawful implementation of facial…

 

Tech5 introduces flexible biometric template protection for its ABIS

Tech5 has developed biometric template protection technology that it says meets the criteria set out in the ISO/IEC 30136 standard….

 

Maza streamlines KYC with Regula biometric and document verification

Regula has integrated its document and biometric verification system into Maza Financial, a fintech company based in the United States,…

 

More ballparks to get biometric entry through MLB’s Go-Ahead Entry

Major League Baseball continues to grow its facial recognition entry program with biometrics from NEC. An article in Sports Business…

 

Inrupt enters growing digital wallet market with pitch from WWW inventor

Inrupt has launched a digital wallet, which comes with a notable endorsement from an internet pioneer. A press release says…

 

OIX calls on new UK government to accelerate digital ID rollout

The UK should work toward a digital wallet strategy, provide clarity on how ID will work across the public and…

Comments

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Most Read This Week

Featured Company

Biometrics Insight, Opinion

Digital ID In-Depth

Biometrics White Papers

Biometrics Events