The combination of a username and password remains the most common type of customer authentication, yet this method continues to be exploited in data leaks, credential stuffing attacks, phishing scams, and malware.
Next Identity Secure's Password Guard protects your customers—and your brand—by analyzing passwords and enforcing polices that increase security, shield against bad actors, and strengthen governance.
The Password Guard extension is a suite of features offering granular configuration options that can be deployed globally or for specific integrations—giving your service the ability to implement custom policies that meet complex enterprise requirements.
Password Guard available for Next Identity Journeys and Next Identity API
Password Guard's Password History Detector feature prevents customers from reusing passwords they've used before, reducing the likelihood that a customer uses a password that may have been involved in a breach. Password History also invalidates access tokens once the password has been changed so that a currently compromised account will lock out active malicious users.
A customer that is changing their password through Next Identity Journeys or the Next Identity API is required to choose a password that has not previously been used. The number of previously used passwords that's stored is configurable globally, or by integration.
Password History also invalidates previous access tokens once the password has been changed so a currently compromised account will lock out active malicious users.
Credential stuffing attacks rely on compromised databases to gain access to user accounts across a variety of applications. To protect your customers against this kind of attack, the Password Breach Detector feature of Password Guard looks up passwords in a database of known breached accounts and prevents customers from reusing that password—making it more difficult for malicious users to gain access to your customer's accounts.
Provide users with a visual cue about the relative strength of their password compared to the requirements to encourage stronger passwords.
Updated 2 months ago