The Term “Password Security” is an Oxymoron
Despite their ubiquity, passwords have become – at best – an anachronism and, at worst – a gaping security blindspot for organizations and individuals alike. To put it simply, passwords are bad. They represent one of the weakest links in security, are a leading cause of breaches, and are both difficult and frustrating to manage.
I’ll say it again. Passwords are bad. Bad for security and bad for user experience. Bad across the board. Bad bad bad. One can even argue that they are the most prevalent and broadly accepted (albeit irrationally) global vulnerability. They offer practically zero redeeming qualities whatsoever and you should stop using them immediately.
To summarize, passwords suck.
But, since you are on the Ping Identity website, I’m likely preaching to the choir on the shortcomings of password security. Most of us already know this all too well. We also know that adopting passwordless authentication can solve all these problems through enhanced security, better user experience, and streamlined access management:
For customers, passwordless authentication improves engagement while also lowering abandonment rates. These seamless experiences ultimately drive higher revenues.
For employees, passwordless authentication results in less time entering and resetting login credentials. In turn, this equals higher productivity and less strain on helpdesks.
While increased profits should be motivation enough to embrace passwordless, the security benefits are also glaringly obvious. Case in point, 80% of breaches involve brute force attacks or the use of lost or stolen credentials.
Clearly, the pros of going passwordless drastically exceed the cons of sticking with the status quo. So – this begs the question – why the heck are we still using passwords?!?!