Are we seeing the death of the password?6
Posted on 5th Sep 2011 by Gemalto in Enterprise Security
Joey Muniz (The Security Blogger) wrote recently about how it is becoming increasingly straightforward for potential hackers to find out your passwords, due to the predictable nature of way people select a password.
This useful cartoon from xkcd shows how easy it can be to obtain passwords, also suggesting a simple way in which to boost your security.
I absolutely agree with Joey’s statement that you need two-factor authentication in order to safeguard your data in today’s world. Usernames and passwords are free, but you get what you pay for – and effective security is not usually free.
The challenge lies in the fact that most companies are afraid of the cost and difficulty of rolling out a more secure authentication solution. But in reality the real question should be ‘what is the cost of not moving to strong authentication?’
McAfee recently revealed that 72 different organizations around the world have been victims of cyber-spying. With attacks likely to increase, it is important to note that strengthening your access controls ensures that you have a higher level of security for all those who are attempting to access the network.
Microsoft has made some progress in helping support strong authentication by incorporating the support of smart cards into both Windows 7 and Server 2008, and there are easy downloads to upgrade earlier versions. But one of the most important things that companies need to consider is risk-appropriate authentication levels. This simply means making sure you have the right level of security for your organizational level. By implementing risk-appropriate authentication for users who do not need access to sensitive information (remote sales persons, contractors) a company could use OTP authentication that is stronger than username and password, but only provides access.
For users who have greater access privileges and depend on communication or the transfer of confidential information (legal, executives or board members) companies should think about migrating to certificate-based or PKI authentication. With Microsoft’s support, this type of authentication comes with additional benefits like email encryption and digital signature. Once enabled, it is as easy as clicking a button in Outlook to send an encrypted email to another person within the same trust framework. The process is equally as simple for digitally signing a document or Excel spreadsheet.
Companies need to take a hard look at who has access to what and must move the higher level users to a stronger form of authentication. To do anything less would be irresponsible.
Tags#GemaltoNFC 4G Apple BYOD Digital Security EMV Facebook Gemalto IOT IoTMaker LTE M2M MWC MasterCard Mobile NFC OTP Payments SIM SMS Softcard USA Visa authentication banking cloud contactless convenience digital ebanking fraud identity innovation internet of things machine-to-machine mobile payment mobile payments mobile wallet mobile world congress mobile marketing multi-factor authentication online banking passwords password security smartphone strong authentication technology trust two factor authentication
Around the siteRecent Posts
- Gemalto is happy to support COP21 official delegates going green for the conference - 01/12/15 @ 04:12
- Are you an M2M IoT expert, or novice? Test yourself with our Holiday Calendar Countdown - and potentially win an iPad Air 2! - 30/11/15 @ 03:11
- Will my payment solution be a success? - 30/11/15 @ 11:11
- Why sensible Wi-Fi management is crucial for mobile network operators - 26/11/15 @ 10:11
- Fraud doesn’t spread holiday cheer - the Naughty and Nice of online retail…. - 24/11/15 @ 09:11
- Thank you. Very interesting.... - 12/11/15 @ 10:11
- Is the thermos blue tooth or wi-fi enabled? I want... - 27/10/15 @ 03:10
- Hi there, it's a low power network technology a bi... - 27/10/15 @ 11:10
- What the heck is a zigbee? :J... - 26/10/15 @ 11:10
- This is Awesome and it can help to a lot of people... - 26/10/15 @ 06:10
- Gemalto (211)
- Manfred Kube (78)
- Tim Cawsey (64)
- Marta Bordonada (55)
- Dominique Brulé (38)
- Philippe Benitez (34)
- Jennifer Dean (33)
- Rémi de Fouchier (30)
- Kristel Teyras (23)
- Arta Sylejmani (23)
- Ken Abbott (20)
- John Ahlberg (19)
- Neville Pattinson (16)
- Nicole Williams (14)
- Isabelle Lodo (13)
- Frederic Martinez (11)
- Michelle Leech (11)
- Jack Jania (11)
- Brittany Jedrzejewski (11)
- Stéphanie Viriot (10)
- Axel Hansmann (10)
- Cecile Eurendjian (8)
- Paul Kobos (8)
- Naomi Lurie (8)
- Kim Depussé (8)
- Ernesto Haikewitsch (7)
- Pierre Lelievre (6)
- Jane Strachey (6)
- Macey Morrison (5)
- Xavier Larduinat (5)