{"id":622732,"date":"2023-03-28T09:49:19","date_gmt":"2023-03-28T14:49:19","guid":{"rendered":"https:\/\/news.sellorbuyhomefast.com\/index.php\/2023\/03\/28\/how-to-prepare-for-a-world-without-passwords\/"},"modified":"2023-03-28T09:49:19","modified_gmt":"2023-03-28T14:49:19","slug":"how-to-prepare-for-a-world-without-passwords","status":"publish","type":"post","link":"https:\/\/newsycanuse.com\/index.php\/2023\/03\/28\/how-to-prepare-for-a-world-without-passwords\/","title":{"rendered":"How to prepare for a world without passwords"},"content":{"rendered":"<div>\n<section>\n<p><time title=\"2023-03-27T20:07:00+00:00\" datetime=\"2023-03-27T20:07:00+00:00\">March 27, 2023 1:07 PM<\/time>\n\t\t\t<\/p>\n<\/section>\n<div>\n<p><img loading=\"lazy\" decoding=\"async\" width=\"750\" height=\"381\" src=\"https:\/\/venturebeat.com\/wp-content\/uploads\/2022\/02\/GettyImages-1326418539-e1644354981500.jpg?fit=750%2C381&#038;strip=all\" alt=\"Data privacy and hacking concept image with hacker arms emerging from laptop\"><\/p>\n<div>\n<p><em>Image Credit:  Andrey Suslov \/\/ Getty Images<\/em><\/p>\n<\/div><\/div>\n<\/p><\/div>\n<div id=\"primary\" role=\"main\">\n<article id=\"post-2847323\">\n<div>\n<div id=\"boilerplate_2682874\">\n<p><em>Join top executives in San Francisco on July 11-12, to hear how leaders are integrating and optimizing AI investments for success<\/em>. <em><a href=\"https:\/\/avolio.swapcard.com\/Transform2023\/registrations\/Start?utm_source=vb&#038;utm_medium=boiler&#038;utm_content=landingpage&#038;utm_campaign=T23_BoilerPlates\">Learn More<\/a><\/em><\/p>\n<hr>\n<\/div>\n<p>Businesses are spending billions of dollars each year on cybersecurity solutions, but we\u2019re still seeing a steady increase in security breaches. We hear about high-profile cases, but for every breach that makes headlines, there are countless others that are just as devastating for businesses at every stage of growth.<\/p>\n<p>Why are we seeing this increase? The answer is simple \u2014 no matter how strong your security infrastructure, the vast majority of breaches today stem from the same culprit: Compromised login credentials. The <a href=\"https:\/\/venturebeat.com\/security\/with-password-security-giving-way-to-passwordless-descope-raises-53m\/\">password<\/a> \u2014 the very tool that was designed to guard against cybercriminals \u2014 is fundamentally flawed because it relies on human behavior for its efficacy.\u00a0<\/p>\n<p>There is good news, however.\u00a0Recent industry developments show promise in addressing this \u201cpassword problem\u201d\u00a0with a new type of login that can replace passwords \u2014 the weakest link in the cyber defense chain \u2014 with un-phishable and frictionless passkeys.<\/p>\n<p>Cybersecurity has been an issue for a long time in tech \u2014 a constant concern over the last 30 years of my career at companies like IBM and HubSpot. This milestone is an opportunity to refocus on the basics of cybersecurity and address how the risk of not investing in this area will impact organizations, regardless of industry or stage of growth. Extending far beyond the dollar cost of a hack, a breach can lead to <a href=\"https:\/\/www.wsj.com\/articles\/credit-raters-look-more-carefully-at-how-companies-respond-to-cyberattacks-11666863002\" target=\"_blank\" rel=\"noreferrer noopener\">costly penalties<\/a>, a tarnished brand, low employee morale, and possibly a damaged executive reputation.<\/p>\n<p><html><body><\/p>\n<div id=\"boilerplate_2803147\">\n<h3>Event<\/h3>\n<div>\n<p><span>Transform 2023<\/span><\/p>\n<div id=\"gm0a52976\">\n<p>Join us in San Francisco on July 11-12, where top executives will share how they have integrated and optimized AI investments for success and avoided common pitfalls.<\/p>\n<\/div>\n<\/div>\n<p><a href=\"https:\/\/avolio.swapcard.com\/Transform2023\/registrations\/Start?utm_source=vb&#038;utm_medium=incontent&#038;utm_content=landingpage&#038;utm_campaign=T23_incontent\"><br \/>\n                Register Now            <\/a>\n                        <\/p>\n<\/div>\n<p><\/body><\/p>\n<p>The next wave of authentication technology is upon us. To prepare yourself and your workplace, here are three things to keep in mind.<\/p>\n<h2 id=\"h-think-passwordless-today-for-passkeys-tomorrow\">Think passwordless today for passkeys tomorrow<\/h2>\n<p>As the CEO of a security company, I am a little more cognizant of password hygiene now than the average person \u2014 but I have to admit that I\u2019ve fallen into bad behavior in the past. <\/p>\n<p>Growing up in Louisiana as a huge football fan, I remember setting up my first password and wanting to pick \u201cLSU.\u201d Sadly, the service required at least six characters (shamefully too few, I now know), so I went with \u201cELESHU\u201d instead. I don\u2019t use that one anymore, but as humans, we\u2019re still too often tempted by shortcuts that expose our companies and ourselves to security risks. As a result, hackers have identified this type of behavior as their most promising attack vector, and we\u2019ve seen tremendous growth of <a href=\"https:\/\/venturebeat.com\/security\/slashnext-using-generative-ai-shut-down-chatgpt-phishing-attacks\/\">phishing incidents<\/a> to steal user credentials.<\/p>\n<p>It should come as no surprise, then, that eliminating passwords has always been the goal. So what is a passkey, and why is it different? A passkey is a passwordless credential, where the website and the authenticator are communicating by exchanging keys. These cannot be seen or accessed by humans, removing all human-related risks of password usage. <\/p>\n<p>You can\u2019t accidentally leave a passkey lying around, and there\u2019s no need to worry about generating unique passwords. Passkeys are based on public-key cryptography, and unlike passwords, they don\u2019t rely on storing shared secrets on servers. Humans can type passwords anywhere (sometimes accidentally on a website like facebok.com instead of <a href=\"https:\/\/www.facebook.com\/\" target=\"_blank\" rel=\"noreferrer noopener\">facebook.com<\/a>), but passkeys can\u2019t be phished \u2014 they are bound to the website they are set up for.<\/p>\n<p>It\u2019s hard to change human behavior, but we can change the way we approach authentication. Only a handful of websites currently support passkey-based authentication, but that doesn\u2019t mean we need to wait around for adoption. Until passkeys become mainstream, you can experience the notion of passwordless authentication through biometrics, or via apps like Discord or Whatsapp using QR codes to allow cross-platform logins.\u00a0<\/p>\n<h2 id=\"h-consumers-behavior-will-fuel-adoption-at-work\">Consumers\u2019 behavior will fuel adoption at work<\/h2>\n<p>Next year marks the tenth anniversary of the FIDO Alliance, the industry group that\u2019s been working on this problem. Their initial focus has clearly been on consumer applications, not business applications. That makes sense because our employees are consumers too, and their behavior as they shop and interact online will shape the way they interact at work. <\/p>\n<p>In general, I think there has been a major shift in business software, including security software \u2014 the user experience has to be consumer-grade to drive adoption, and the expected broad availability of passkeys for sign-ins to various online services. So while the early evolution of <a href=\"https:\/\/venturebeat.com\/security\/from-passwords-to-passkeys-a-guide-for-enterprises\/\">passkey<\/a> technology is geared toward consumer solutions, there is a rich supply of user problems that passkeys will address for businesses at any stage of growth.<\/p>\n<p>On average, internet users are juggling more than 200 logins for various accounts \u2014 with that, it only takes one wrong click, one convincing phishing email or one reused password to disassemble an entire organization. The widespread shift to remote work only expanded the number of disparate applications and tools used by teams on a daily basis.<\/p>\n<p>As our workplaces become more digitized and distributed, the surface area that we leave vulnerable to bad actors grows larger and larger. A phishing-resistant solution like passkeys addresses an obvious and urgent need, and the argument for a wide rollout of this technology has already been proven \u2014 Microsoft, <a href=\"https:\/\/www.apple.com\/newsroom\/2022\/09\/ios-16-is-available-today\/\" target=\"_blank\" rel=\"noreferrer noopener\">Apple<\/a> and <a href=\"https:\/\/9to5google.com\/2022\/12\/08\/chrome-passkey-support\/\" target=\"_blank\" rel=\"noreferrer noopener\">Google<\/a> have made their bets, all recently launching passkey solutions.<\/p>\n<h2 id=\"h-don-t-throw-away-your-passwords-yet\">Don\u2019t throw away your passwords yet<\/h2>\n<p>A majority of popular websites are planning to deploy passkeys toward the end of 2023, and early adopters like <a href=\"https:\/\/newsroom.paypal-corp.com\/2022-10-24-PayPal-Introduces-More-Secure-Payments-with-Passkeys\" target=\"_blank\" rel=\"noreferrer noopener\">PayPal<\/a> are already offering passkey support for payment. However, during the transition period between passwords and passkeys, websites (like Paypal) will support both. This hybrid phase is important, because the switch won\u2019t happen overnight. Today, even diligent companies enforcing multi-factor authentication (MFA) are falling victim to <a href=\"https:\/\/www.axios.com\/2022\/09\/23\/login-code-multifactor-authentication-mfa\" target=\"_blank\" rel=\"noreferrer noopener\">disruptive attacks<\/a>. Until passkey technology becomes ubiquitous, a combination of good password hygiene and MFA is still our safest bet.<\/p>\n<p>During this phase, make sure your organization understands the reasoning behind a move from MFA and passwords (which might have always felt like a pain point) to passkeys \u2014 the most secure, easy to use, interoperable and trustworthy way for us to live and work online.<\/p>\n<p><em>JD Sherman is an advisor and board member of Dashlane<\/em>. <\/p>\n<div id=\"boilerplate_2736392\">\n<h3 id=\"h-datadecisionmakers\">DataDecisionMakers<\/h3>\n<p>Welcome to the VentureBeat community!<\/p>\n<p>DataDecisionMakers is where experts, including the technical people doing data work, can share data-related insights and innovation.<\/p>\n<p>If you want to read about cutting-edge ideas and up-to-date information, best practices, and the future of data and data tech, join us at DataDecisionMakers.<\/p>\n<p>You might even consider\u00a0<a rel=\"noreferrer noopener\" target=\"_blank\" href=\"https:\/\/venturebeat.com\/contribute-to-datadecisionmakers\/\">contributing an article<\/a>\u00a0of your own!<\/p>\n<p><a rel=\"noreferrer noopener\" href=\"https:\/\/venturebeat.com\/category\/DataDecisionMakers\/\" target=\"_blank\">Read More From DataDecisionMakers<\/a><\/p>\n<\/div>\n<p>\t\t\t\t<\/html><\/div>\n<\/p><\/div>\n<p><a href=\"https:\/\/venturebeat.com\/security\/how-to-prepare-for-a-world-without-passwords\/\" class=\"button purchase\" rel=\"nofollow noopener\" target=\"_blank\">Read More<\/a><br \/>\n JD Sherman, Dashlane<\/p>\n","protected":false},"excerpt":{"rendered":"<p>March 27, 2023 1:07 PM Image Credit: Andrey Suslov \/\/ Getty Images Join top executives in San Francisco on July 11-12, to hear how leaders are integrating and optimizing AI investments for success. Learn More Businesses are spending billions of dollars each year on cybersecurity solutions, but we\u2019re still seeing a steady increase in security<\/p>\n","protected":false},"author":1,"featured_media":622733,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[28039,46,644],"tags":[],"class_list":["post-622732","post","type-post","status-publish","format-standard","has-post-thumbnail","category-passwords","category-technology","category-world"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/posts\/622732","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/comments?post=622732"}],"version-history":[{"count":0,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/posts\/622732\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/media\/622733"}],"wp:attachment":[{"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/media?parent=622732"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/categories?post=622732"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/newsycanuse.com\/index.php\/wp-json\/wp\/v2\/tags?post=622732"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}