August 2022 - PingOne - PingOne Cloud Platform

Version 1.7.2 of the PingOne MFA mobile SDK has been released. For details, see:

• Android version
• iOS version

You can now create composite risk predictors, which are single predictors that take into account multiple risk predictors, such as the use of an anonymous network and user location anomaly.

In addition to combining the results of multiple risk predictors, you can include conditions that relate to the total number of predictors in a policy that were low risk, medium risk, or high risk.

For example, you can create a composite predictor that specifies that the predictor should be assigned a result of high risk if any of the following conditions are true:

• IP reputation is high risk
• IP velocity is high risk
• Any three predictors in the policy being evaluated are found to be high risk

For details, see Risk predictors.

In the MFA settings for a PingOne environment, you can now enhance security by specifying that the keys used for device pairing should be 16-character alphanumeric keys rather than 12-digit numeric keys.

With PingOne, you can now configure a population as the default population. When you create a user, PingOne will add the user to the default population unless you specify a population. For more information, see Populations.

For mobile apps that are used for MFA, you can now enable device integrity checking separately for Android apps and iOS apps.

In MFA policies, for applications that have device integrity enabled, there are now two options to determine how registration and authentication attempts should be handled if a response is not received for the device integrity.

When the Permissive option is selected, if the device integrity check is inconclusive, the user is allowed to continue. When the Restrictive option is selected, the user is blocked in such situations.

You can now create a FIDO policy to define the FIDO devices and authenticators that can be used for registration and authentication purposes, and to enable usernameless and passwordless authentication. For information, see FIDO.

Now, in addition to the existing Weights method for combining risk predictors, you can use the new Scores method.

When you use the Scores approach, you can exercise more control over the overall calculation because you can specify an exact numerical score that should be assigned when PingOne Risk determines that there is a medium or high risk level for a predictor. For details, see Risk policies.