Here is the text of the NIST sp800-63b Digital Identity Guidelines.

  • TBi@lemmy.world
    link
    fedilink
    English
    arrow-up
    5
    ·
    2 months ago

    My company blocked ssh keys in favour of password + 2FA. Honestly I don’t mind the 2FA since we use yubikeys, but wouldn’t ssh key + 2FA be better?

    • jj4211@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      2 months ago

      All well and good when ssh activity is anchored in a human doing interactive stuff, but not as helpful when there’s a lot of headless automation that has to get from point a to point b.