User authentication doesn't get much easier than the password.
But for organizations across the globe, poor password hygiene has become one of the most challenging security issues. According to Troy Hunt, creator of HaveIBeenPwned, an increasing number of data breaches and data leaks are a direct result of weak passwords and password reuse.
Verizon puts a number to that: More than 80% of breaches leverage stolen or weak passwords, according to its "2019 Data Breach Investigations Report."
"[Yet] despite their faults, passwords are enormously effective at one thing," Hunt says. "Everybody knows and understands how to use them. Above everything else, passwords are a very, very low barrier to entry."
Perhaps, but many organizations, along with their tech teams, are questioning whether eliminating passwords as an authentication tool might augment their overall security posture.
New MentalityFor that to happen, organizations need to understand that password elimination in and of itself is a journey rather than a destination, says Phillip Dunkelberger, CEO of Nok Nok Labs.
As a first step, organizations must determine what they are trying to accomplish. "Why are people eliminating passwords in the first place? If it's not protecting anything, why do I care if I have to use pa ..
Support the originator by clicking the read the rest link below.
