All Research
Buyer's Compass

Why don't you like this?

I like this
I don't like this

Passwordless Authentication for Enterprises and Consumers: HID​

Alejandro Leal
Description
The password is a remnant of an era before hacking and credential-based attacks became a widespread problem. Although the internet has changed significantly since the early days, passwords have only become longer and more complicated. In parallel, cybercriminals have targeted operating systems with increasing sophistication and frequency as computers have become more accessible worldwide. For years, IT professionals have discussed the idea of eliminating passwords because they can easily be compromised. In addition, passwords can be costly, time-consuming, and difficult to manage, often resulting in poor user experience. Furthermore, the fact that password reuse is a common practice among customers and employees, only exacerbates the problem. In the context of Customer Identity and Access Management (CIAM), passwordless authentication solutions should have features and capabilities to detect, prevent, and minimize fraudulent activities and unauthorized access within an organization. Effective fraud prevention measures are crucial for protecting both the financial and reputational assets of a business. Passwordless authentication solutions should also support a variety of consumer devices, including smartphones, tablets, laptops, and desktop computers, ensuring seamless access across different platforms and operating systems.
Short Summary
Lorem ipsum odor amet, consectetuer adipiscing elit. Luctus fames rutrum metus habitasse donec quis turpis.

Nibh porta tristique sociosqu eleifend condimentum sapien ultricies. Dapibus rhoncus urna elit commodo blandit ut vestibulum tristique. Ante parturient morbi maecenas leo ac est dolor aliquam iaculis.

Leo vehicula vivamus ipsum lacinia cubilia torquent accumsan! Viverra a dictumst dapibus; nam consequat felis mus. Euismod semper iaculis congue mauris nullam.
Sign up and get more insights
Become a member of the KuppingerCole Community to access this and thousands of other publications.
Log in or register
Interesting Facts
Lorem ipsum odor amet, consectetuer adipiscing elit. Luctus fames rutrum metus habitasse donec quis turpis.

Nibh porta tristique sociosqu eleifend condimentum sapien ultricies. Dapibus rhoncus urna elit commodo blandit ut vestibulum tristique. Ante parturient morbi maecenas leo ac est dolor aliquam iaculis.

Leo vehicula vivamus ipsum lacinia cubilia torquent accumsan! Viverra a dictumst dapibus; nam consequat felis mus. Euismod semper iaculis congue mauris nullam.
Sign up and get more insights
Become a member of the KuppingerCole Community to access this and thousands of other publications.
Log in or register
Notable Quotes
Lorem ipsum odor amet, consectetuer adipiscing elit. Luctus fames rutrum metus habitasse donec quis turpis.

Nibh porta tristique sociosqu eleifend condimentum sapien ultricies. Dapibus rhoncus urna elit commodo blandit ut vestibulum tristique. Ante parturient morbi maecenas leo ac est dolor aliquam iaculis.

Leo vehicula vivamus ipsum lacinia cubilia torquent accumsan! Viverra a dictumst dapibus; nam consequat felis mus. Euismod semper iaculis congue mauris nullam.
Sign up and get more insights
Become a member of the KuppingerCole Community to access this and thousands of other publications.
Log in or register
Recommendations
Lorem ipsum odor amet, consectetuer adipiscing elit. Luctus fames rutrum metus habitasse donec quis turpis.

Nibh porta tristique sociosqu eleifend condimentum sapien ultricies. Dapibus rhoncus urna elit commodo blandit ut vestibulum tristique. Ante parturient morbi maecenas leo ac est dolor aliquam iaculis.

Leo vehicula vivamus ipsum lacinia cubilia torquent accumsan! Viverra a dictumst dapibus; nam consequat felis mus. Euismod semper iaculis congue mauris nullam.
Sign up and get more insights
Become a member of the KuppingerCole Community to access this and thousands of other publications.
Log in or register
Takeaways
Lorem ipsum odor amet, consectetuer adipiscing elit. Luctus fames rutrum metus habitasse donec quis turpis.

Nibh porta tristique sociosqu eleifend condimentum sapien ultricies. Dapibus rhoncus urna elit commodo blandit ut vestibulum tristique. Ante parturient morbi maecenas leo ac est dolor aliquam iaculis.

Leo vehicula vivamus ipsum lacinia cubilia torquent accumsan! Viverra a dictumst dapibus; nam consequat felis mus. Euismod semper iaculis congue mauris nullam.
Sign up and get more insights
Become a member of the KuppingerCole Community to access this and thousands of other publications.
Log in or register
Description
Short Summary
Interesting Facts
Notable Quotes
Recommendations
Takeaways

1 The Challenge

The password is a remnant of an era before hacking and credential-based attacks became a widespread problem. Although the internet has changed significantly since the early days, passwords have only become longer and more complicated. In parallel, cybercriminals have targeted operating systems with increasing sophistication and frequency as computers have become more accessible worldwide. For years, IT professionals have discussed the idea of eliminating passwords because they can easily be compromised. In addition, passwords can be costly, time-consuming, and difficult to manage, often resulting in poor user experience. Furthermore, the fact that password reuse is a common practice among customers and employees, only exacerbates the problem.

In the context of Customer Identity and Access Management (CIAM), passwordless authentication solutions should have features and capabilities to detect, prevent, and minimize fraudulent activities and unauthorized access within an organization. Effective fraud prevention measures are crucial for protecting both the financial and reputational assets of a business. Passwordless authentication solutions should also support a variety of consumer devices, including smartphones, tablets, laptops, and desktop computers, ensuring seamless access across different platforms and operating systems.

The most common types of password-based attacks are:

1.1 Account Takeover (ATO)

Account Takeover Fraud (ATO) occurs when fraudsters gain unauthorized access to a user’s personal accounts using stolen usernames and passwords or credential stuffing attacks to execute unauthorized transactions. Other methods of account takeover fraud include malware attacks, such as man-in-the-middle and man-in-the-browser schemes, as well as the deployment of remote access tools through Trojans or via social engineering scams.

Full article is available for registered users with free trial access or a paid subscription.
Log in
Become a Member and read on!
Create an account and buy a Membership package or use our 7-days free trial period to access this and 600+ other in-depth and up-to-date insights.
Register and request your 7-day free trial
Register
Already convinced? Check out our packages
Choose a package

Stay up to date

Subscribe for a newsletter to receive updates on newest events, insights and research.
I have read and agree to the Privacy Policy
I have read and agree to the Terms of Use