Expand description
§Device Binding and Trust Management
Enterprise-grade device binding to address:
- Risk #21: Single-factor fallback on trusted devices (device trust misuse)
§Features
- Device Fingerprinting: Browser/OS/hardware identification
- Device Registration: MFA-protected device enrollment
- Trust Expiration: Automatic trust expiry (30 days default)
- Periodic Re-auth: Require MFA even on trusted devices
- Device Revocation: User and automatic revocation
- Risk-Based Trust: Location, IP, behavior analysis
- Sensitive Operation Blocks: Never skip MFA for critical actions
- Device History: Track all device registrations and usage
Structs§
- Device
Binding Config - Device binding configuration
- Device
Binding Manager - Device binding manager
- Device
Fingerprint - Device fingerprint for identification
- Device
Registration Request - Device registration request
- Device
Trust Result - Device trust validation result
- InMemory
Device Storage - In-memory storage for testing
- Trusted
Device - Trusted device information
Enums§
- Browser
Type - Browser identification
- Device
Binding Error - Errors that can occur during device binding operations
- Device
Platform - Device platform/OS
- Device
Type - Device type classification
Traits§
- Device
Binding Storage - Storage trait for device binding