NIST 800-63A represents an important shift towards prioritizing stronger, phishing-resistant authentication mechanisms. It encourages Responsible Parties (RPs) to regularly assess threats, service impacts and user populations to select an ID&V mechanism which meets those criteria.
Tradition...