Streamlining 2FA for Federal Reserve Bank, Chicago (FRB)

How the Federal Reserve Bank of Chicago Strengthened Atlassian Security with miniOrange 2FA

The Federal Reserve Bank of Chicago (Chicago Fed), one of the twelve regional Reserve Banks in the Federal Reserve System, plays a key role in monetary policy, financial supervision, and economic research. To safeguard sensitive operations across its Atlassian applications, the Chicago Fed turned to miniOrange Two-Factor Authentication (2FA) to add robust security while maintaining a seamless user experience.

Get Free Consultation
chicago-bank-image

Business Challenge

The Chicago Fed wanted to enhance its security posture by integrating an additional layer of authentication into its Atlassian suite, especially for Bitbucket GIT operations such as push, pull, and clone.


The main challenges included:

  • Traditional authentication methods were insufficient for securing sensitive development workflows.
  • Integration Complexity: Most GIT clients do not support custom pop-ups, making it difficult to insert OTP prompts during commands.
  • User Experience Concerns: Any added security had to avoid disrupting the productivity of developers and IT teams.

How miniOrange Helped Solve FRB Chicago’s Challenge

miniOrange implemented its Two-Factor Authentication (2FA) add-on across Jira and Bitbucket, providing versatile authentication methods and tailored security controls.


Key Features Implemented:

  • Duo Push Integration: GIT commands triggered Duo Push Notifications, allowing users to authenticate with a simple tap instead of entering OTPs, ensuring compatibility with all GIT clients.
  • Email Link Verification (Out-of-Band): As an alternative, users received secure email links to verify GIT actions, reducing reliance on external apps and maintaining smooth workflows.
  • Seamless 2FA in Jira: The 2FA add-on was also implemented in Jira, adding consistent security across the entire Atlassian ecosystem.

How It Works

  • A user initiates a GIT command (push, pull, or clone) from a git client.
  • miniOrange 2FA intercepts the request and triggers a Duo Push notification or sends a verification link to the user’s email.
  • The user approves the push notification or verifies via email link.
  • Once validated, the command is executed securely, protecting the system against unauthorized access.

Success Outcomes: Stronger Security, Zero Disruptions

By adopting miniOrange’s advanced 2FA solutions, the Chicago Fed achieved:

  • Enhanced Security: A strong second layer of protection for sensitive financial data and development operations.
  • Seamless Experience: Push and email-based methods provided non-intrusive security without interrupting workflows.
  • Operational Flexibility: Multiple 2FA methods ensured adaptability to the bank’s strict compliance and usability requirements.

About the Client

The Federal Reserve Bank of Chicago serves the Seventh Federal Reserve District, covering parts of Illinois, Indiana, Michigan, Wisconsin, and Iowa. As part of the U.S. central banking system, it is responsible for monetary policy, supervising financial institutions, providing financial services, and conducting economic research. By adopting miniOrange’s 2FA solution, the Chicago Fed reinforced its commitment to safeguarding financial systems and ensuring the security of its digital operations.




Author

Pallavi Narang

Share article