Trust and Verify: Trusted Devices & Trusted Networks Controls Make Duo Even Easier For You
We recently introduced two new features in our platform that give you finer-grained control over when your users are prompted for two-factor authentication.
Jon is the co-founder and CTO of Duo Security, responsible for leading product vision and the Duo Labs advanced research team. Before starting Duo, Jon was a self-loathing academic, completing his PhD at the University of Michigan in the realm of cloud security. In a prior life, Jon enjoyed offensive security research and generally hacking the planet. Jon was recently named to Forbes "30 under 30" list for his mobile security hijinks.
We recently introduced two new features in our platform that give you finer-grained control over when your users are prompted for two-factor authentication.
X-Ray is Duo's mobile app that performs "vulnerability assessment" on Android devices. X-Ray can identify known, yet unpatched, vulnerabilities in the mobile platform itself that could be exploited.
Here’s an update on the ASLR capabilities as well as cover some of the other improvements in exploit mitigations present in Jelly Bean.
While Bouncer may be unable to catch sophisticated malware from knowledgeable adversaries currently, we're confident that Google will continue to improve and evolve its capabilities. We've been in touch with the Android security team and will be working with them to address some of the problems we've discovered.