The Problem with Passwords
Passwords are a problem
Most computing systems still rely on static passwords to verify a user's identity.
But everyone has a real problem with passwords.
They are:
- A hassle for users; with multiple passwords always changing,
- A drain on the helpdesk; more than half of all end user calls relate to password problems,
- A headache for management; users cannot be held responsible for their actions,
- A worry for security managers; they can never know if passwords have been stolen (until it’s too late)
But passwords are a dream for the hacker! A password is so easy to steal, whether by shoulder surfing, snooping, sniffing or simple guesswork, and once they have it, they can take over your entire on-line identity.
Read our white paper 'Passwords: Why they are so easy to crack' to understand the top 5 techniques used by password pirates to hijack your login details, and how this can undermine the whole security, accountability and auditability of your e-business systems.
The classic username-and-password combination can only deliver weak authentication. And yet it is all that stands between your sensitive e-business information and prying eyes.
. . . but it doesn't have to be that way
What is Strong Authentication?
A strong authentication system demands two or more distinct proofs of your identity before authorising access? Also known as ‘two factor’ authentication the most common ‘proofs’ or factors that the user is challenged to present are:
Something you know
a secretPIN or password
plus
Something you have
a unique, physical device such as a token, smartcard or even a mobile phone or PDA.
Users are already familiar with this principle of two-factor, strong authentication through using their bank card and PIN to withdraw cash from an ATM.
Signify's strong authentication services make it quick, simple and affordable to build this rigorous level of security, accountability and auditability into your on-line systems.
