Despite the risks associated with password sharing , many organisations still share passwords among team members .
Until a true passwordless future arrives , organisations must adopt advanced security controls that can protect them from phishing and credential theft attacks .
editor ’ s question
?
espite the growing
D risks and frustrations associated with password-based security , many professionals and organisations continue to use this method of authentication . There are many reasons for this :
1 . Firstly , passwords are a familiar and easy-to-use form of authentication that requires little training or support . People have been using passwords for decades , meaning this habit can be hard to break .
2 . Another reason is that many legacy systems still rely on passwordbased authentication and cannot easily be updated . Replacing these systems can be a daunting task that many organisations are not willing to undertake , continuing to use password-based authentication instead .
3 . Passwords also offer a sense of control and ownership over one ’ s account security . The concept of passwords is relatively simple to understand for both technical and non-technical users . This sense of control is important for many people to have the feeling they are safe and can be difficult to give up .
4 . On the other hand , alternative methods of authentication , such as biometrics , can be seen as invasive or uncomfortable . Users may have concerns about how biometric data is stored and about the dangers of that data getting into the wrong hands , making them reluctant to use these methods of authentication .
5 . Despite the risks associated with password sharing , many organisations still share passwords among team members to allow for easier collaboration and access to shared resources . This
Despite the risks associated with password sharing , many organisations still share passwords among team members .
practice is a major security risk , but it remains common in many workplaces .
6 . Some organisations prioritise cost savings over security and password-based authentication is often cheaper to implement than other forms of authentication . Other modern authentication methods , such as hardware keys or biometric scanners , may require expensive migration projects , costly equipment and higher ongoing costs to maintain . As a result , many
TAL ZAMIR , CTO OF PERCEPTION POINT organisations opt for the cheaper and less secure option of passwordbased authentication .
However , things are changing for the better and the upcoming universal support for ‘ passkeys ’ can make it simpler for consumers and businesses to switch to a passwordless world , which is both safer and more convenient . Google , Microsoft and Apple are already on board with this plan and we can expect more companies to follow suit in the coming years .
While there are many reasons why people and organisations still rely on password-based security , it is important to recognise the growing risks and frustrations associated with this method of authentication . Until a true passwordless future arrives , organisations must adopt advanced security controls that can protect them from phishing and credential theft attacks , which are now easier than ever to execute and can endanger every organisation .
Until a true passwordless future arrives , organisations must adopt advanced security controls that can protect them from phishing and credential theft attacks .
28 www . intelligentciso . com