Razorops, Inc.的动态

Amazon Cognito has expanded multi-factor authentication (MFA) functionality to include email as an additional factor. You now have a choice of delivering one-time passwords (OTP) using email, in addition to the preexisting support for text messages (SMS) and time-based one-time passwords (TOTP). You can enable email MFA either as part of the sign in process or as a challenge for adaptive authentication. With Amazon Cognito, it's easier to integrate authentication, authorization, and user management into your web and mobile apps. Amazon Cognito provides authentication for applications with millions of users and supports sign-in with social identity providers such as Apple, Facebook, Google, and Amazon, and enterprise identity providers via standards such as SAML 2.0 and OpenID Connect.

If you are using #Entrust Certificates this is big news! Make sure to change your certificate issuer before November 2024. Also take this opportunity to automate your SSL Certificate lifecycle with #ACME

???????? ?????????????????? ?? ?????? ?????? ???? ?????? ???????? ????????????, ?????? ???? ?????? ???????????? ?????? ?????????????????? ???? ???????????????? ?????????????? ?????????????????? ???????? ???????????????????????? ???????????? ?????????? ?????????????? ???????????? ?????????????????? ???????????? ????????????????????? 1. Encrypting documents and storing them in the database enhances security, as users can only access them through the app. However, this may slow down your system significantly. 2. Storing documents in the file system is acceptable, but it can consume a lot of space, and managing backups and the lifecycle will become complex tasks. 3. Storing documents in AWS S3 is an option; however, granting public access to the S3 bucket and sharing direct links to documents in the web app is not safe. Users can save those URLs and access the documents anytime without logging into the system. ?????? ??????-???????????? ??????: Temporary Access: Pre-signed URLs are typically valid for a limited time, which you can specify when creating the URL. Access Control: You can restrict the operations (GET, PUT) that can be performed using the pre-signed URL. ?????? ??????????: Allowing users to upload files directly to S3 without exposing your AWS credentials. Providing temporary access to files for users who do not have AWS permissions. #techfrolic #aws #security

Amazon Cognito enhances Advanced Security Features (ASF) to detect additional risk factors and cover custom authentication flows. ASF now identifies risks such as impossible travel, where a user signs in from two different locations in a time period implausible for travel between them. Additionally, ASF now detects risks in custom authentication flows. Customers can improve the security of applications that use custom authentication factors by enabling risk detection and adaptive authentication. Amazon Cognito simplifies the process of adding authentication, authorization, and user management to your web and mobile apps. The service provides authentication for applications with millions of users and supports sign-in with social identity providers such as Apple, Facebook, Google, and Amazon, and enterprise identity providers via standards such as SAML 2.0 and OpenID Connect.

Have you ever wondered how you login to Netflix on your TV? Or why you need to scan a QR code to do so? Well, if you are intrigued by OAuth authorization flows then I have some good news for you! I'm very proud to share my first ever blogpost! https://hubs.li/Q02FPcm90 I wrote a technical in-depth article about how you can implement Device Authorization Grant when working with AWS Cognito and FastAPI. Feel free to check out the blogpost and give some claps. You can also have a look around in my open source repository to get started yourself. https://lnkd.in/ggP5wdSB

One of the features we all use but rarely think about? That ‘Login with Google’ button. It’s so seamless, we forget what a game-changer it is. Introduced as part of Google’s push for secure and convenient authentication, it’s become a staple in millions of apps and websites, saving us from the dreaded ‘Forgot Password’ loop and sparing us from countless account sign-ups. What’s impressive is how it balances simplicity and security, SSO (Single Sign-On) backed by Google’s OAuth 2.0 and, for many, an added layer of Multi-Factor Authentication. It’s built to keep accounts safe without the hassle of managing yet another password. Today, over 3 billion sign-ins happen daily through Google accounts, proving that a feature we often overlook has quietly redefined online security and ease of use. Google’s simple login feature has set the standard for what secure access should feel like in 2024 simple, reliable, and effortless. Here’s to the unsung hero of online experiences. #ProductFeatures #SSO #LoginWithGoogle #UserExperience #DigitalSecurity #ProductManagement #Google #Product #GoogleOAuth

ICYMI: Check out this article in Silverlinings from Steve Gleave of Microsoft, about using modern #APIs to deliver network-aware apps, and how #CAMARA makes that easier ? https://lnkd.in/eJXc_iH4

General Availability - Just-in-time application access with PIM for Groups https://lnkd.in/gW8zSWVp Provide just-in-time access to non-Microsoft applications such as AWS & GCP. This capability integrates PIM for groups, and application provisioning to reduce the activation time from 40+ minutes to roughly 2 minutes when requesting just-in-time access to a role in a non-Microsoft app.

?? Application programming interfaces (APIs) are critical to the creation of new #applications and #services because they allow third-party #developers to run on, communicate and interact with #5G #network or any type of public or private infrastructure, including #wireless, wired and even satellite.

"....Gartner predicts?that by 2026, over 40% of organizations developing proprietary applications will adopt ASPM to identify and resolve security issues." Can you answer these questions: 1. How many microservices and APIs are in your applications? 2. Which microservices are internet facing? 3. Where are the sensitive data flows in apps? What sensitive data is included? 4. How often do you push application updates? 5. What percent of changes get a full security review? If you cannot, we can help! #crowdstrike #aspm Check out this article from Forbes on this topic: https://lnkd.in/d_gq_fAr