SUBSCRIBE
76
0
Security

It’s time to move beyond the password

Dave Webb
The combination of user name and password has been the de facto mechanism for securing resources and identifying users since the computer moved from being a back-office phenomenon to every workstation in the company.
 

 

Image courtesy of Shutterstock
 
When it was devised as a means to secure the system, the likelihood was the few users who needed them would have a single password to remember (and they probably still wrote them down).

Today, if you have fewer than two dozen accounts which require a password, you’re a very lucky person. Try enumerating yours right now. I have 12 tabs open in my browser right now that are password-protected.

 
RELATED CONTENT
 
This is unsustainable. Under these circumstances, in order to have a semblance of productivity, users must use duplicate passwords, use simple passwords, or record them in hard copy. (You’ve got a sticky note on your desk right now with at least one password, don’t you?)

Tarun Khandelwal of CA recommends an extra, transparent layer of protection for the network to avoid theft or breaches, but that addresses protecting the network. It does not address the unsustainable burden this schema puts on the user.

This day of the password is over. We have to move to a more sustainable process for identifying users and their rights on the system. Biometric systems are becoming more practical every day, and may be at least part of the solution. Used inconjunction with, say, an NFC or RFID token, two-factor autherntication is quick and easy, with something you have to bring to work anyway: an entry fob and your fingerprint.

Would you recommend this article?

Share

Thanks for taking the time to let us know what you think of this article!
We'd love to hear your opinion about this or any other story you read in our publication.


Jim Love, Chief Content Officer, IT World Canada

Featured Download

Dave Webb
Dave Webb
Dave Webb is a freelance editor and writer. A veteran journalist of more than 20 years' experience (15 of them in technology), he has held senior editorial positions with a number of technology publications. He was honoured with an Andersen Consulting Award for Excellence in Business Journalism in 2000, and several Canadian Online Publishing Awards as part of the ComputerWorld Canada team.
Previous article
Wind still cloudy on auction
Next article
Executive order the only way to protect U.S. infrastructure

Featured Articles

Cybersecurity in 2024: Priorities and challenges for Canadian organizations 

By Derek Manky As predictions for 2024 point to the continued expansion...
Read more

Survey shows generative AI is a top priority for Canadian corporate leaders.

Leaders are devoting significant budget to generative AI for 2024 Canadian corporate...
Read more

Related Tech News

Tech Jobs

Subscribe to our Newsletter

Our experienced team of journalists and bloggers bring you engaging in-depth interviews, videos and content targeted to IT professionals and line-of-business executives.

SUBSCRIBE

Tech Companies Hiring Right Now

Popular Stories This Week

ITWC Network

Follow Us

©

2024

IT World Canada. All Rights Reserved.

SUBSCRIBE