NIST is No Longer Recommending Two-Factor Authentication Using SMS

NIST is No Longer Recommending Two-Factor Authentication Using SMS

NIST is no longer recommending two-factor authentication systems that use SMS, because of their many insecurities. In the latest draft of its Digital Authentication Guideline, there’s the line:

[Out of band verification] using SMS is deprecated, and will no longer be allowed in future releases of this guidance.

Tags: authentication, NIST, SMS, two-factor authentication

Posted on August 3, 2016 at 7:11 AM
• 0 Comments