Passwords are inherently insecure, and adding multifactor authentication can help compensate, but ultimately, organizations should be aiming to eliminate the password altogether because strong password polices are difficult to enforce, and passwords are easily compromised and are costly in terms of management, password resets, and lost productivity.
As discussed in the previous edition of KC Navigator, adopting MFA can immediately enable stronger authentication to reduce cybercrime, but it should be regarded as a short-term improvement over passwords alone, with the ultimate goal being truly passwordless authentication.
It could be argued that with the migration to cloud and increased remote working, it is critical for organizations to adopt passwordless authentication, because traditional MFA systems typically involve the use of a password, and are therefore inherently vulnerable.
Fortunately, going passwordless is becoming easier due to the development of new authentication...
Subscribe to our Podcasts
How can we help you