SSH Communications Security announced significant enhancements to the authentication capacity of its solution portfolio, the PrivX Zero Trust Suite. PrivX Authorizer, including Device Trust Authorizer, provides more secure authentication for privileged users and their devices. Email phishing is an attack vector that leverages the weaknesses of credential-based authentication and weak MFA solutions.

Hence, modern phishing-resistant MFA is needed, and modern SSH MFA solutions provide a powerful way to mitigate phishing attacks on authentication. Strong authentication and just-in-time authorization for super-users: Authentication using off-the-shelf products is enough for standard users. However, there are some critical systems and high-impact operations that require stricter access control and stricter authentication.

The users for this are about 1 in 200: super-users or power users, such as administrators and application owners. For these sensitive users, PrivX Authorizer provides a phishing-resistant, biometrics-based advanced MFA that can authenticate the device and the user. The Device Trust solution continuously validates the device's security posture, terminating policy-contravening sessions automatically.

Moreover, it can deny access based on anomalous user behavior, location, and time, or require re-authentication. Additionally, PrivX Authorizer will be able to facilitate and approve temporary role requests from other users.