This is part of a running commentary series for #WorldPasswordDay 2021.
Each year on the first Thursday in May, World Password Day strives to encourage users to elevate their password security strategy.
We heard from cybersecurity experts on what strong password security looks like and what the future of passwords holds.
Blake Hall, Founder and CEO, ID.me:
“Passwords continue to plague consumers: How do you prove you are who you say you are online? Secure logins are usually valid for only one organization. People are forced to re-verify and create a new password at each site. We need to solve the password problem and put consumers in control of their own data.
The solution is a portable trusted login.
For example, at ID.me, we’ve developed a secure digital identity network. People use the same login and share their identity as they choose with both public and private sector organizations. Individuals verify their identity only once, and then their login and identity credentials move with them. People get improved access with less friction.”
Benoit Grangé, Chief Technology Evangelist, OneSpan:
“Passwords are a problem. Passwords are inconvenient and riskier than other authentication options available today because they can be guessed, stolen, or cracked. While we won't see passwords go completely away anytime soon, a passwordless approach could be the answer to many user friction and security challenges. A recent VISA survey found consumers are ready to leave the password behind. Seventy percent of consumers believe that biometrics are always more comfortable as they do not involve memorizing passwords. With a plethora of other data pointing to a continuing upward trend in biometric usage, new risk-based multifactor authentication with fingerprint, face, or iris recognition could be the solution that will finally free us from the burden of endless passwords, opening the doors to a brighter, passwordless future.”
Steve Maloney, Executive Vice President, Acuant:
“World Password Day is a chance to raise awareness about the importance of managing and keeping PII (personally identifiable information) secure from the increasing threat landscape. It all comes back to trust. People want to trust in the technology and the providers they choose to do business with for peace of mind.
2021 has already been filled with a myriad of password leaks and breaches and these trends point to the need for businesses to utilize trusted, privacy minded technology. Solutions like verifiable credentials and digital IDs can help, as can the use of cryptography and PKI (public key infrastructure) when appropriate. Securing access credentials through identity verification is critical to consumer safety, and with the technology available today there does not have to be compromise on security versus a good user experience.