Posted On: Nov 28, 2017
Now, you can use advanced security features (beta) for HAQM Cognito to help protect access to user accounts in your applications. These advanced security features provide risk-based adaptive authentication and protection from the use of compromised credentials.
When HAQM Cognito detects unusual sign-in activity, such as sign-in attempts from new locations and devices, it assigns a risk score to the activity and lets you choose to either prompt users for additional verification or block the sign-in request. In addition, users can now verify their identities using Time-based One-time Passcode (TOTP) generators, such as Google Authenticator and Authy. Further, when HAQM Cognito detects users have entered credentials that have been compromised elsewhere, it prompts them to change their password.
The advanced security features for HAQM Cognito are available in beta in the US East (N. Virginia), US East (Ohio), US West (Oregon), EU (Frankfurt), EU (Ireland), and EU (London) Regions.
To learn more, see HAQM Cognito Developer Guide.