Password-less authentication is a group of identity verification methods that do not rely on passwords. Password-less provides a secure access for all individuals to use whether they are working in the office or remote. Innovating towards a complete password-less future that balances usability, creates stronger authentication. It gives employees a frictionless experience, reducing the burden of security risks for the employees and business.
How does it work?
Password-less authentication creates less user interaction during a log in process than other forms of authentication. Implementing password-less can be a small task, especially when you have a large employee population, hybrid infrastructures and complex log in activity. Achieving a password-less working environment is a journey that involves a phased approach as technology evolves every day, and we as users must adapt. Complete elimination of passwords is still not underway, although reducing resilience on them is being implemented by downloading MFA; establishing trust in devices.
Microsoft
A 2017 Horizon study shows that 81% of data breaches involve weak default or stolen passwords. Hackers have lists of most used passwords and use them against individuals accounts every single day. 99% of common password attacks are avoided when an account has MFA enabled. Regular passwords are very low security. Multi-factor authentic traditional methods such as an OTP code or an SMS code are less than convenient, although they do provide higher security.
Microsoft have introduced three different password-less methods for a business to give to its employees, so they can keep their identities safe, they have a better work experience and more choices when going password-less. These three methods are Windows Hello, Microsoft Authenticator and FIDO2 Security Keys.
They are as follows:
- Windows Hello- a fast and seamless way of logging on as employees can use a simple pin, fingerprint scan or face recognition and they’re instantly logged on to their computer.
- Microsoft Authenticator- going password-less with a password-less authenticator can be a useful tool if you have already registered for the authenticator with MFA, can upgrade their account and have a full password-less experience.
- FIDO2 Security Keys-this is a standard based password-less authentication method using two common elements: WebAuthN and CTAB. FIDO2 come in an USB format where you can plug in the key and log in.
Password-less authentication technology is the future of an employee’s work experience as all these methods are based on a simple architecture.
Password-less authentication isn’t just easier for employees, it improves a business’s security and reduces costs associated with password management. Passwords create a more complex experience in the workplace, slow down productivity and are a weak form of user authentication. Reference: Passwordless Multifactor Authentication – Microsoft Security
