Announcing Advanced Security Features (Beta) for Amazon Cognito
Now, you can use advanced security features (beta) for Amazon Cognito to help protect access to user accounts in your applications. These advanced security features provide risk-based adaptive authentication and protection from the use of compromised credentials.
When Amazon Cognito detects unusual sign-in activity, such as sign-in attempts from new locations and devices, it assigns a risk score to the activity and lets you choose to either prompt users for additional verification or block the sign-in request. In addition, users can now verify their identities using Time-based One-time Passcode (TOTP) generators, such as Google Authenticator and Authy. Further, when Amazon Cognito detects users have entered credentials that have been compromised elsewhere, it prompts them to change their password.
The advanced security features for Amazon Cognito are available in beta in the US East (N. Virginia), US East (Ohio), US West (Oregon), EU (Frankfurt), EU (Ireland), and EU (London) Regions.
To learn more, see Amazon Cognito Developer Guide.