Message Image

Skip main navigation (Press Enter).

Symantec Access Management

Back to discussions

Expand all | Collapse all

Guidance required on phishers getting DDNA and Device DNA from js and exploiting it by replaying on legitimate websites

Bibhu SahooAug 03, 2017 06:12 AM

One of our customer using CA Risk Authentication has concerns around phishers getting DDNA, DevcieID ...

Awijit SinghSep 08, 2017 04:00 PM

Hi, The DeviceID is taken from browser cookie and the DDNA is created by our OOTB js file. The MFP can ...

1. Guidance required on phishers getting DDNA and Device DNA from js and exploiting it by replaying on legitimate websites

0 Recommend
Bibhu Sahoo
Posted Aug 03, 2017 06:12 AM

Reply Reply Privately
One of our customer using CA Risk Authentication has concerns around phishers getting DDNA, DevcieID and exploiting it by replaying it on legitimate websites. I am looking forward to mitigate these kind of issues. Any guidance or advise would be greatly appreciated?
2. Re: Guidance required on phishers getting DDNA and Device DNA from js and exploiting it by replaying on legitimate websites

0 Recommend
Broadcom Employee

Awijit Singh
Posted Sep 08, 2017 04:00 PM

Reply Reply Privately
Hi, The DeviceID is taken from browser cookie and the DDNA is created by our OOTB js file. The MFP can be intercepted by anyone. Even if someone has the MFP as well as the DeviceID, there are still other rules that will always force the user to INCREASEDAUTH/ MFA.
For example, DEVICEVELOCITY and many other rules.

Copyright 2023. All rights reserved.

Powered by Higher Logic