Thursday
Feb 21
2019

The New NIST Digital Identity Guidelines: Impact on Passwords, Security Questions & Account Lockouts

Registration Options & Pricing

Please select your membership status.


Live Webinar Includes

  • One connection to the Live Webinar
  • Handout and Take-Away Toolkit
  • Available on Desktop, Mobile & Tablet
  • Presenter’s Contact Info for Follow-Up

Recorded Webinar Includes

  • Recording of the Live Webinar
  • Available 6 business days following Live date
  • Available for 6 months following Live
  • Handout and Take-Away Toolkit
  • Available on Desktop, Mobile & Tablet
  • Free Digital Download, yours to keep
  • Share link with anyone at your credit union
  • Presenter’s contact info for follow-up
150+
Webinars
Available
100%
Satisfaction
Guaranteed

10:00 am – 11:30 am HST
12:00 pm – 1:30 pm PT
1:00 pm – 2:30 pm MT
2:00 pm – 3:30 pm CT
3:00 pm – 4:30 pm ET

In the summer of 2016, the National Institute of Standards and Technology (NIST) published new draft guidelines that proposed sweeping changes to traditional security models and best practices. Finalized in the summer of 2017, the new NIST guidelines upended several historical approaches to authentication. Security questions are no longer considered secure. Mandatory periodic password changes can weaken security. Special characters can make passwords harder for users to remember and easier for hackers to guess. Is the three-attempt lockout policy even necessary? Regulators defer to NIST standards. Therefore, financial institutions must prepare for shifts in authentication and security compliance by fundamentally recalibrating the balance between digital security and user experience.

Continuing Education: Attendance verification for CE credits upon request

HIGHLIGHTS

  • New NIST Digital Identity Guidelines – what to know and why you should care
  • Why “security” (challenge) questions aren’t secure
  • Why mandatory periodic password changes make passwords less secure
  • Why three-attempt account lockouts are unnecessary, frustrate users, and discourage account vigilance
  • How to revise password parameters for stronger security and happier end-users
  • How to implement two-factor authentication (2FA) for maximum security and usability
  • Browser boot-camp: understanding strengths and vulnerabilities among popular web browsers
  • Securing your digital channels by taking cues from BigTech

  • TAKE-AWAY TOOLKIT
    • NIST Special Publication 800-63B Digital Identity Guidelines
    • Directory of articles and resources on NIST implications and best practices
    • Employee training log
    • Quiz to measure staff learning and a separate answer key

DON'T MISS THIS RELATED WEBINAR!

"Synthetic ID Fraud: What It Is, How It Works & Real-Life Scenarios"
Tuesday, March 12, 2019

WHO SHOULD ATTEND?

This informative session is designed for information security officers, risk officers, compliance officers, IT managers, operations managers, and anyone responsible for the evolution and security of digital banking channels.

 

NOTE:  All materials are subject to copyright. Transmission, retransmission, or republishing of any webinar to other institutions or those not employed by your financial institution is prohibited. Print materials may be copied for eligible participants only.

MEET THE PRESENTER

Jack Henry & Associates, Inc.®
You might be interested in:

We provide credit union webinars on compliance, lending, regulations, security, operations, new accounts, collections, fraud, security & other topics. For more information on credit union education and online training opportunities, join our mailing list.