Further clarity on Enhanced Password Protection

christian6 · July 15, 2024, 3:12am

This discussion asked the question about what exactly enhanced password protection is as listed in the pricing tier. The answer was:

Enhanced Password Protection refers to breached password detection, and Credential Guard which will let a user know they are using a known leaked password.
Breached Password Detection

However Breached Password Detection is an explicitly named different line item, so I don’t feel like this question has been sufficiently answered. If it’s not password strength policies, and it’s different enough to be a separate line item what exactly is it?

dflorio · December 19, 2024, 7:33pm

I have the same question.

The tooltip says that it’s “A way to increase the security of passwords by making them more difficult to guess through brute force attacks.”

My guess is that it means they use stronger hashing algorithms / salt techniques when this feature is enabled.

But since part of the selling point of services like Auth0 is to not have to worry so much about security, I’d expect them to be more transparent about what this means. What makes the lower-tier passwords less protected?

Topic		Replies	Views
What is Enhanced Password Protection? Help user-management , user-password-management	6	1442	March 2, 2023
FAQ about Credential Guard Addon and Breached Password Detection Knowledge Articles faq , credential-guard , breached-password-detection	1	239	June 17, 2024
Password Policy modification in Essential Subscription Help security-question-concern , security-compliance	3	794	August 29, 2023
About the specifications of the "Breached Password Detection" feature Help apis , breached-password , attack-protection , application	0	1298	January 30, 2023
How can we test breached-password detection? Help anomaly-detection , alerts	2	4288	July 26, 2019

Further clarity on Enhanced Password Protection

Related topics