OpenAI mandates hardware-backed passkeys for Trusted Access Cyber members
3 hours ago
- #hardware authentication
- #AI security
- #cybersecurity
- AI's rapid advancement is reshaping the global cybersecurity landscape, making safeguarding access to advanced AI critical, especially for security researchers and defenders.
- OpenAI announced a new industry standard effective September 1: all individual Trusted Access for Cyber (TAC) members must enable Advanced Account Security using hardware-backed passkeys to access frontier cyber models.
- Yubico emphasizes that AI security depends on identity and authenticator assurance, advocating for phishing-resistant, hardware-backed authentication over software-based controls or legacy MFA.
- Hardware-backed passkeys for TAC significantly increase the difficulty and cost for threat actors to exploit accounts at scale, disrupting criminal ecosystems that rely on compromised accounts.
- TAC members can secure their ChatGPT accounts with YubiKeys through OpenAI's Advanced Account Security program, which disables weaker fallback methods, offering a passwordless, phishing-resistant experience.