Users still engaging in risky password, authentication practices

2020-02-24 06:00

IT security practitioners are aware of good habits when it comes to strong authentication and password management, yet often fail to implement them due to poor usability or inconvenience, according to Yubico and Ponemon Institute.

The conclusion is that IT security practitioners and individuals are both engaging in risky password and authentication practices, yet expectation and reality are often misaligned when it comes to the implementation of usable and desirable security solutions.

"For years, achieving a balance between high security and ease of use was near impossible, but new authentication technologies are finally bridging the gap. With the availability of passwordless login and security keys, it's time for businesses to step up their security options. Organizations can do far better than passwords; in fact, users are demanding it."

Only 31% of IT security respondents say that their organization uses a password manager, which are effective tools to securely create, manage, and store passwords.

49% of individuals say that they would like to improve the security of their accounts and have already added extra layers of protection beyond a username and password.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/KdedCWBdjzM/

#authentication