The Problems with Passwords, Transitioning to Passwordless Logons
Single password-based authentication has become outdated in the digital era due to powerful machines becoming more efficient at cracking (or brute forcing) passwords, amplifying weakness made by users creating predictable passwords that are easy to guess. With passwords, users are expected to remember a secret, a feat that is increasingly difficult as password complexity requirements continue to increase. Paired with the recommendation that we use different passwords for every service we use, and the fact that humans are bad at creating random passwords, means that once an attacker has one variant, even slight variations of passwords can still be easy to crack. The human element of passwords is also a significant challenge since users tend to create passwords that they can easily remember, such as the names of loved ones, pets, locations, paired with the temptation to reuse passwords across multiple accounts, this makes it easier to guess passwords and gain access to their accounts.
To address these challenges, passwordless authentication has emerged as an alternative to traditional password-based authentication. It is not just about removing the password, but by involving cryptographic keys and secondary factors such as biometrics or pins it creates an exceptionalaly complex level of security.
The adoption of passwordless authentication is becoming increasingly necessary due to the inadequacy of password-based authentication in the digital space. While passwordless authentication offers a viable solution, it also presents several challenges that must be addressed. To ensure a smooth transition to passwordless authentication, there is a need to address the human element of passwords, educate users, ensure that everyone has access to the equipment required for this method of authentication, showcasing the benefits of passwordless authentication so that it can to be viewed as an improvement and much more.
However, we also have to ensure that businesses adopt passwordless login practices, and with the vast array of businesses across the world & with vast user bases with varying levels of access to the technology to achieve these practices, the adoption of passwordsless account access is not going to be immediate. Some businesses are beginning to offer this along side existing password and multi-factor authentication methods, however the transition is going to take a while. One2Call can help businesses adopt to passwordless and single sign on methods of authentication where supported. Reach out to us to find out more about this.
Latest News Stories
Simple Email Habits Give Cyber Criminals an Edge
In an increasingly digital world, even the seemingly innocent action of sharing holiday plans in an out-of-office email could give cyber criminals an edge. At the recent 2023 SmallBiz Week conference in Melbourne, Australia, representatives from small businesses, as...
Join One2Call for a Masterclass in Cyber Security!
One2Call and Doncaster Chamber are excited to announce a Cyber Security Masterclass on July 25th, 2023. The event will be held at Flourish Enterprise's Woodfield Park location from 9am to 10:30 am. Did you know that standard signature-based Anti-Virus alone is only...
The Unseen Cyber Threat: The New .mov and .zip Domains
In May, Google introduced eight new top-level domains (TLDs), a move that has sparked an intense debate amongst cyber security experts. Top-level domains, or TLDs, are the suffixes at the end off a URL, such as ".com”, “.co.uk”, “.net”, ".uk" and many others. TLDs...
Our Customers
Testimonials
Rob Watt, Straaltechniek
Quick and easy. Pawel always great to deal with.
Jane, Barca Leeds
Very quick at responding to problems – keep you updated – easy to deal with – very happy with the service !
Chris, Kelham Hall
Another 5 star Job from One2Call’s top man.