FB pixel

COVID-19 crisis emphasizes importance of a passwordless future, WEF says

Categories Access Control  |  Biometrics News
 

COVID-19 crisis emphasizes importance of a passwordless future

Dependency on the internet, digital infrastructures and remote work amid the coronavirus outbreak have created a perfect opportunity for online criminal activity to increase, warns the World Economic Forum (WEF). As criminals have been successfully manipulating COVID-19-related information to launch attacks, the organization points out there is no better time like the present to get rid of passwords and go passwordless with technologies like biometrics to verify user identity.

By adopting technologies such as biometrics, behavior analytics and device attributes, passwords, usernames, SMS and other less secure methods could be phased out. Passwordless authentication reduces security and compromised credential risks, the organization explains.

According to a recent World Economic Forum report, implementing a passwordless strategy would boost security, as companies would be less exposed to data breaches, and reduce business costs caused by password management and data breaches. It could also enable digital transformation by reducing friction and improving regulatory compliance, and increase the usability of biometrics, for example, which could be used to log in to other systems and products.

To deploy passwordless authentication across an entire company, businesses have to make sure they can remove passwords and credential-based solutions completely and integrate the strategy with all interfaces and systems. This could allow authentication that supports protocols such as Security Assertion Markup Language (SAML) and OpenID Connect (OIDC) for data authentication exchange.

WEF names five key areas where companies could start implementing passwordless technology: VPN and remote access could have static credentials removed, contact and information technology by getting rid of password resets and account lockouts, remote desktop and virtual desktop infrastructure (VDI), customer identity and access management, and critical applications.

Password and credential theft has ranked as a top vulnerability, which has turned it into a critical component of any corporate policy to secure digital infrastructures and reduce risks. Methods such as two-factor authentication (2FA) which uses SMS, one-time passwords (OTPs) and hardware tokens do not increase security because they are layers to an existent system based on usernames and passwords.

Onfido is the latest biometric company to join WEF’s efforts to develop a passwordless future.

This month, WEF published a white paper describing in detail its proposed biometrics-backed paperless international travel concept, called Known Traveller Digital Identity, a limited pilot project involving travel between Canada and the Netherlands.

Article Topics

 |   |   |   |   |   | 

Latest Biometrics News

 

Yoti trumpets NIST age estimation results and testing plans

A new facial age estimation algorithm submitted by Yoti to the U.S. National Institute of Standards and Technology has placed…

 

Indonesia tests new digital ID system, calls on ASEAN to speed up DEFA negotiations

Indonesia is rolling out the limited release of its new digital government platform INA Digital. In this first phase, INA…

 

Colorado legislators wrangle laws on facial recognition in schools, data protection

Regulatory winds are blowing from both directions in Colorado, where a moratorium on AI facial recognition cameras in schools is…

 

Ethiopia kicks off digital ID enrolment drive in Addis Ababa

A month-long digital ID enrollment campaign gets underway in the Ethiopian capital, Addis Ababa, today October 10 in a move…

 

mDL authentication and biometrics among new modules from Veridocs

Kentucky-based authentication and identity management software maker Veridocs has launched modules for mobile driver’s license authentication, biometrics, mobile device verification…

 

Moldova works on aligning digital ID regulation with eIDAS 2.0

Moldova is working on aligning its digital ID regulation with the European Union and its Digital Identity (EUDI) Wallet. The…

Comments

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Most Read This Week

Featured Company

Biometrics Insight, Opinion

Digital ID In-Depth

Biometrics White Papers

Biometrics Events