Microsoft Account Security Enhanced

The Microsoft account identity provider service used with many Microsoft online services has been updated so that users can monitor account activity, get a recovery code in case there is a problem with accessing their accounts, and control where notifications are sent. The changes make Microsoft accounts more secure because users can better monitor account activity, and now that recovery has been streamlined they will be more likely to use two-factor authentication. However, Microsoft accounts are owned and controlled by the user, even if they are created with an organization-owned e-mail address, so organizations must control the Microsoft accounts that are used with services that are critical to them.

Improvements Make Account More Secure

Microsoft account is a Microsoft-hosted identity service. Any user can create an account as long as the user has an e-mail address where the user can receive a link to finish activation of the account. Most information about the user associated with the account is self-asserted: Microsoft only verifies the e-mail address and payment information if the account is set up for purchase from a Microsoft Store. Microsoft does not check any other claims made by the account’s user, such as the user’s name or age.