Update references to MFA
Closed this issue · 2 comments
alanna-blinn commented
A recent gov client security assessment revealed that we need to be consistently referring to MFA -- not TFA, 2FA, two-factor, and two factor. Handbook should be updated accordingly.
openprivacy commented
Need to be clear that MFA is form of 2FA and TFA without being confusing.
And it's not clear that "MFA" is standardized across all agencies, but it is a better general-purpose term.
mgifford commented
So at a minimum changing these pages:
- https://handbook.civicactions.com/en/latest/010-welcome-to-civicactions/training/security-training/
- https://handbook.civicactions.com/en/latest/050-how-we-work/tools/github/#setting-up-your-account
- https://handbook.civicactions.com/en/latest/030-policies/security/
- https://handbook.civicactions.com/en/latest/060-engineering/drupal-site-building/
- https://handbook.civicactions.com/en/latest/100-security/awareness/
- https://handbook.civicactions.com/en/latest/060-engineering/security-compliance/
- https://handbook.civicactions.com/en/latest/100-security/yubikey/macosx/
- https://handbook.civicactions.com/en/latest/100-security/yubikey/linux/
- https://handbook.civicactions.com/en/latest/100-security/yubikey/README/
- https://handbook.civicactions.com/en/latest/020-about-us/culture/
So lets switch to "MFA" but maybe to make it clear in the first instance on each page we should say MFA (TFA/2FA) so that people know what we are talking about. MFA is more general, but 2FA is much more commonly used.