Microsoft says it is bringing FIPS 140 compliance for Microsoft Authenticator on iOS devices for organizations with security and compliance concerns.
In a Tech Community blog, the Redmond, Wash.-based IT giant says many of its customers that work in environments with security and compliance requirements need authenticators to use cryptography validated by the Federal Information Processing Standards (FIPS) 140.
Microsoft says Authenticator versions 6.6.8 and higher on iOS are now FIPS 140 compliant for all Azure Active Directory authentication using push multifactor authentication (MFA), passwordless phone sing-in, and time-based one-time passcodes. FIPS 140 compliance will be coming to Android device soon, the company adds.
According to Microsoft, FIPS 140 compliance for Authenticator will also help federal agencies meet requirements set out in U.S. President Joe Biden’s executive order on cybersecurity, and will also help healthcare organizations comply with Electronic Prescriptions for Controlled Substances (EPCS), a rule from the U.S. Drug Enforcement Agency governing the electronic prescribing of controlled substances.
No changes in configuration are required in the Authenticator app or Azure Portal to enable this capability. Users on Authenticator version 6.6.8 and higher on iOS are FIPS 140 compliant by default for Azure AD authentications, Microsoft says.
To achieve FIPS 140 compliance, Microsoft says the Authenticator app leverages the native Apple cryptography.
The FIPS 140 compliance comes shortly after Microsoft released new features designed to imrpove the security of the tool and give IT admins more control over accidental approvals. The enhancements also includes better management with a new admin user interface and APIs.
According to Microsoft, the new admin features are designed to help protect against MFA fatigue attacks. The company says it will automatically enable critical security features to tackle shifting threat vectors, including number matching for all Authenticator users.
If you enjoyed this article and want to receive more valuable industry content like this, click here to sign up for our digital newsletters!
Leave a Reply