{"id":76052,"date":"2015-03-25T17:03:51","date_gmt":"2015-03-25T21:03:51","guid":{"rendered":"http:\/\/rbachnet.wwwmi3-ss40.a2hosted.com\/index.php\/"},"modified":"2021-11-28T16:11:13","modified_gmt":"2021-11-28T21:11:13","slug":"password-pain-continues","status":"publish","type":"post","link":"https:\/\/rbach.net\/index.php\/password-pain-continues\/","title":{"rendered":"Password Pain Continues"},"content":{"rendered":"<p><a href=\"https:\/\/web.archive.org\/web\/20170611123848\/http:\/\/elekslabs.com:80\/2014\/04\/strong-unique-and-memorable-passwords-a-creative-approach.html\" target=\"_blank\" rel=\"noopener noreferrer\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"alignleft wp-image-103020 size-medium\" title=\"Password Pain Continues\" src=\"https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/password_sticker.jpg?resize=150%2C138&#038;ssl=1\" alt=\"Password Pain Continues\" width=\"150\" height=\"138\" srcset=\"https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/password_sticker.jpg?resize=150%2C138&amp;ssl=1 150w, https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/password_sticker.jpg?resize=75%2C69&amp;ssl=1 75w, https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/password_sticker.jpg?w=305&amp;ssl=1 305w\" sizes=\"auto, (max-width: 150px) 100vw, 150px\" \/><\/a>Despite claims to the contrary, the <strong>password isn&#8217;t dead<\/strong> yet. <a title=\"Help Net Security\" href=\"https:\/\/www.helpnetsecurity.com\/\" target=\"_blank\" rel=\"noopener noreferrer\"><em>Help Net Security<\/em><\/a> points out <a title=\"The Password\u2019s Pulse Beats On. Hackers Still One Step Away From Your Information\" href=\"https:\/\/web.archive.org\/web\/20160130201750\/https:\/\/www.secureauth.com\/Company\/News\/March-2015\/The-Password%E2%80%99s-Pulse-Beats-On-Hackers-Still-One-St.aspx\" target=\"_blank\" rel=\"noopener noreferrer\">new research<\/a> from <a title=\"SecureAuth\" href=\"https:\/\/www.secureauth.com\/\" target=\"_blank\" rel=\"noopener noreferrer\">SecureAuth<\/a> that documents how <strong>dependent many firms are on passwords.<\/strong> In fact, the research found that <strong>40%<\/strong> of IT decision-makers admit that passwords are their only <a title=\"Computer security\" href=\"http:\/\/en.wikipedia.org\/wiki\/Computer_security\" target=\"_blank\" rel=\"nofollow noopener wikipedia noreferrer\">IT security<\/a> measure. The IT leaders also believe it will take 5 years to see a significant shift in organizations&#8217; reliance on passwords. The author says this is a worrying revelation, considering how many\u00a0security breaches are the result of compromised credentials.<\/p>\n<p><a href=\"https:\/\/www.secureauth.com\/\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"alignright wp-image-103022\" src=\"https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/secure-auth_logo.png?resize=100%2C24&#038;ssl=1\" alt=\"\" width=\"100\" height=\"24\" srcset=\"https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/secure-auth_logo.png?resize=75%2C18&amp;ssl=1 75w, https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/secure-auth_logo.png?resize=150%2C36&amp;ssl=1 150w, https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/secure-auth_logo.png?w=200&amp;ssl=1 200w\" sizes=\"auto, (max-width: 100px) 100vw, 100px\" \/><\/a>The researchers found that the entertainment, <strong>hospitality,<\/strong> and leisure industry is taking the most risks with its data as 65% of respondents from this sector admit their organizations <strong>only use passwords<\/strong> as a security method. (<em>rb- No wonder they keep <a title=\"Remote Desktop Opens Door to POS Malware\" href=\"https:\/\/wp.me\/p2wgaW-iyk\" target=\"_blank\" rel=\"noopener\">getting<\/a> <a href=\"https:\/\/wp.me\/p2wgaW-jLM\" target=\"_blank\" rel=\"noopener\">hacked!<\/a><\/em>)<\/p>\n<p>The author claims that SeaureAuth found that 45% of <strong>public sector<\/strong> organizations only use passwords. (<em>rb- Another reason to limit how much data they collect on citizens<\/em>)<\/p>\n<p>Despite companies relying on passwords alone, the survey revealed that 63% of respondents believe their current authentication methods are effectively protecting valuable assets. The survey also revealed that firms worry about protecting different resources:<\/p>\n<ul>\n<li><a href=\"https:\/\/web.archive.org\/web\/20160416100401\/http:\/\/www.sailpoint.com:80\/blog\/2015\/02\/password-management-trade-in-offer\/\" target=\"_blank\" rel=\"noopener noreferrer\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"alignright wp-image-103025\" title=\"relying on passwords\" src=\"https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/passwords_hand-e1567550837621-150x109.jpg?resize=137%2C100&#038;ssl=1\" alt=\"\" width=\"137\" height=\"100\" srcset=\"https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/passwords_hand-e1567550837621.jpg?resize=150%2C109&amp;ssl=1 150w, https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/passwords_hand-e1567550837621.jpg?resize=75%2C55&amp;ssl=1 75w, https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/passwords_hand-e1567550837621.jpg?w=266&amp;ssl=1 266w\" sizes=\"auto, (max-width: 137px) 100vw, 137px\" \/><\/a>29% say protecting the company&#8217;s <a title=\"Virtual private network\" href=\"http:\/\/en.wikipedia.org\/wiki\/Virtual_private_network\" target=\"_blank\" rel=\"nofollow noopener wikipedia noreferrer\">VPN<\/a> is critical<\/li>\n<li>28% believe protecting on-premise applications is a top priority<\/li>\n<li>20% stated protecting Cloud and SaaS is the most important, and<\/li>\n<li>18% said mobile takes precedence.<\/li>\n<\/ul>\n<p>Nick Mansour, Executive Vice President of Worldwide Sales at SecureAuth explained,<\/p>\n<p style=\"text-align: justify; padding-left: 30px;\"><em>As the skills of hackers continue to evolve, organizations are going to have to wise up to new methods of information access security, such as adaptive authentication which can leverage real-time threat intelligence, biometrics and even behavioral analysis.<\/em><\/p>\n<p><a href=\"https:\/\/www.microsoft.com\/en-us\/windows\/features\" target=\"_blank\" rel=\"noopener noreferrer\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"alignright wp-image-103027 size-thumbnail\" title=\"Windows 10 logo\" src=\"https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/Windows10_logo-e1567550913912-71x75.png?resize=71%2C75&#038;ssl=1\" alt=\"Windows 10 logo\" width=\"71\" height=\"75\" srcset=\"https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/Windows10_logo-e1567550913912.png?resize=71%2C75&amp;ssl=1 71w, https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/Windows10_logo-e1567550913912.png?resize=142%2C150&amp;ssl=1 142w, https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/Windows10_logo-e1567550913912.png?w=224&amp;ssl=1 224w\" sizes=\"auto, (max-width: 71px) 100vw, 71px\" \/><\/a>Frighteningly only 44% of SecureAuth respondents have plans to change or enhance their security model in the next two years. The forthcoming <strong>Microsoft <a title=\"Windows 10\" href=\"http:\/\/windows.microsoft.com\/en-us\/windows-10\/about\" target=\"_blank\" rel=\"noopener noreferrer\">Windows 10<\/a> <\/strong>can help firms evolve their authentication processes. <a href=\"https:\/\/www.helpnetsecurity.com\/\" target=\"_blank\" rel=\"noopener noreferrer\"><em>Help Net Security<\/em><\/a> reports that Windows 10, includes a new feature called <strong><a title=\"Windows 10 to get biometric sensor support with \u2018Windows Hello\u2019\" href=\"https:\/\/www.extremetech.com\/computing\/201423-windows-10-to-get-biometric-sensor-support-with-windows-hello\" target=\"_blank\" rel=\"noopener noreferrer\">Windows Hello<\/a><\/strong>.\u00a0Windows Hello will allow users to <a title=\"Authentication\" href=\"http:\/\/en.wikipedia.org\/wiki\/Authentication\" target=\"_blank\" rel=\"nofollow noopener wikipedia noreferrer\">authenticate<\/a> themselves using <strong>biometrics<\/strong>. The SecureAuth study reports that only 28% of IT decision makers believe that businesses will biometrics in 5 years&#8217; time.<\/p>\n<p>The article reports that\u00a0<a title=\"Microsoft\" href=\"http:\/\/www.microsoft.com\/\" target=\"_blank\" rel=\"noopener noreferrer\">Microsoft<\/a> (<a title=\"NASDAQ | MSFT\" href=\"https:\/\/www.google.com\/finance?cid=358464\" target=\"_blank\" rel=\"noopener noreferrer\">MSFT<\/a>) considers Windows Hello authentication more secure than using passwords &#8211; so secure, in fact, that it can be used in government organizations, the defense, financial, and health care industry. Microsoft&#8217;s\u00a0 <a title=\"Joe Belfiore\" href=\"https:\/\/web.archive.org\/web\/20150911232349\/https:\/\/blogs.windows.com\/bloggingwindows\/author\/joebelfiore\/\" target=\"_blank\" rel=\"noopener noreferrer\">Joe Belfiore<\/a> <a title=\"Making Windows 10 More Personal and More Secure with Windows Hello\" href=\"https:\/\/blogs.windows.com\/bloggingwindows\/2015\/03\/17\/making-windows-10-more-personal-and-more-secure-with-windows-hello\/\" target=\"_blank\" rel=\"noopener noreferrer\">wrote<\/a><\/p>\n<p style=\"padding-left: 30px; text-align: justify;\"><em>Our system enables you to authenticate applications, enterprise content, and even certain online experiences without a password being stored on your device or in a network server at all<\/em><\/p>\n<p><a href=\"https:\/\/web.archive.org\/web\/20130921062236\/http:\/\/eyetrackingupdate.com:80\/2010\/10\/08\/apple-face-recognition\/\" target=\"_blank\" rel=\"noopener noreferrer\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"alignright wp-image-103029 size-medium\" title=\"Facial recognition\" src=\"https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/facial-recognition1.jpg?resize=150%2C99&#038;ssl=1\" alt=\"Facial recognition\" width=\"150\" height=\"99\" srcset=\"https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/facial-recognition1.jpg?resize=150%2C99&amp;ssl=1 150w, https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/facial-recognition1.jpg?resize=75%2C50&amp;ssl=1 75w, https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/facial-recognition1.jpg?w=250&amp;ssl=1 250w\" sizes=\"auto, (max-width: 150px) 100vw, 150px\" \/><\/a>Mr. Belifore says Windows Hello will work with <strong>existing fingerprint readers<\/strong>. Windows Hello will also work with <strong>facial or iris detection <\/strong>by combining special hardware and software; &#8220;The cameras use infrared technology to identify your face or iris and can recognize you in a variety of lighting conditions.&#8221;<\/p>\n<p>Mr. Belfiore also introduced <strong><a title=\"Microsoft to add 'enterprise grade' biometric security to Windows 10\" href=\"http:\/\/www.zdnet.com\/article\/microsoft-to-add-enterprise-grade-biometric-security-to-windows-10\/\" target=\"_blank\" rel=\"noopener noreferrer\">Windows Passport<\/a><\/strong>, a programming system that can be used to provide a more secure way of letting you sign in to sites or apps. The article explains that unlike with passwords, with which you authenticate yourself to apps, sites, and networks, Passport allows Windows 10 to do that in your stead: again, without sending up a password to their servers. Mr. Belfiore says:<\/p>\n<p style=\"text-align: justify; padding-left: 30px;\"><em>Windows 10 will ask you to verify that you have possession of your device before it authenticates on your behalf, with a PIN or Windows Hello on devices with biometric sensors. Once authenticated with &#8216;Passport&#8217;, you will be able to instantly access a growing set of websites and services across a range of industries<\/em><\/p>\n<p><strong><em>rb-<\/em><\/strong><\/p>\n<p><em>Couldn&#8217;t Redmond pick a name other than Passport? Reminds me of the Hotmail days.<\/em><\/p>\n<p><em>There is of course the age-old problem of what to do if your biometric signature is stolen. You can easily change your iris with a sharp stick, but that does not seem very efficient.<\/em><\/p>\n<p><em>What do you think?<\/em> <div id=\"polls-22\" class=\"wp-polls\">\n\t<form id=\"polls_form_22\" class=\"wp-polls-form\" action=\"\/index.php\" method=\"post\">\n\t\t<p style=\"display: none;\"><input type=\"hidden\" id=\"poll_22_nonce\" name=\"wp-polls-nonce\" value=\"0b2b892c56\" \/><\/p>\n\t\t<p style=\"display: none;\"><input type=\"hidden\" name=\"poll_id\" value=\"22\" \/><\/p>\n\t\t<p style=\"text-align: left;\"><strong>Will Windows 10 biometrics take off?<\/strong><\/p><div id=\"polls-22-ans\" class=\"wp-polls-ans\"><ul class=\"wp-polls-ul\">\n\t\t<li><input type=\"radio\" id=\"poll-answer-57\" name=\"poll_22\" value=\"57\" \/> <label for=\"poll-answer-57\">Yes<\/label><\/li>\n\t\t<li><input type=\"radio\" id=\"poll-answer-58\" name=\"poll_22\" value=\"58\" \/> <label for=\"poll-answer-58\">No<\/label><\/li>\n\t\t<\/ul><p style=\"text-align: center;\"><input type=\"button\" name=\"vote\" value=\"   Vote   \" class=\"Buttons\" onclick=\"poll_vote(22);\" onkeypress=\"poll_result(22);\" \/><\/p><p style=\"text-align: center;\"><a href=\"#ViewPollResults\" onclick=\"poll_result(22); return false;\" onkeypress=\"poll_result(22); return false;\" title=\"View Results Of This Poll\">View Results<\/a><\/p><\/div>\n\t<\/form>\n<\/div>\n<div id=\"polls-22-loading\" class=\"wp-polls-loading\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" src=\"https:\/\/i0.wp.com\/rbach.net\/wp-content\/plugins\/wp-polls\/images\/loading.gif?resize=16%2C16&#038;ssl=1\" width=\"16\" height=\"16\" alt=\"Loading ...\" title=\"Loading ...\" class=\"wp-polls-image\" \/>&nbsp;Loading ...<\/div>\n<\/p>\n<p>&nbsp;<\/p>\n<h6>Related articles<\/h6>\n<ul>\n<li>Second factor authentication can help prevent security breaches (cloudentr.com)<\/li>\n<\/ul>\n<p>&nbsp;<\/p>\n<p><em><a title=\"Ralph Bach\" href=\"https:\/\/rbach.net\/index.php\/new-resume\/\" target=\"_blank\" rel=\"noopener noreferrer\">Ralph Bach<\/a>\u00a0has been in IT long enough to know better and has blogged from his\u00a0<a title=\"Bach Seat\" href=\"https:\/\/rbach.net\/\" target=\"_blank\" rel=\"noopener noreferrer\">Bach Seat<\/a> about IT, careers, and anything else that catches his attention since 2005. You can follow him on <a class=\"broken_link\" href=\"http:\/\/www.linkedin.com\/in\/rb48334\" target=\"_blank\" rel=\"noopener noreferrer nofollow\">LinkedIn<\/a>,\u00a0<a href=\"https:\/\/www.facebook.com\/ralph.bach.14\" target=\"_blank\" rel=\"noopener noreferrer\">Facebook<\/a>,\u00a0and\u00a0<a href=\"https:\/\/twitter.com\/rbach48334\" target=\"_blank\" rel=\"noopener noreferrer\">Twitter<\/a>. Email the Bach Seat\u00a0<a href=\"mailto:\/\/bach.seat@gmail.com\" target=\"_blank\" rel=\"noopener noreferrer\">here<\/a>.<\/em><\/p>\n<p>&nbsp;<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Only 44% of firms have plans to update security model in next 2 years can Microsoft&#8217;s Windows 10 biometrics end password pain<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[3277,2099,1452,2227,2399,82,421,2541,2400,4,2398],"class_list":["post-76052","post","type-post","status-publish","format-standard","hentry","category-security","tag-3277","tag-authentication","tag-biometrics","tag-facial-recognition","tag-fingerprint-reader","tag-microsoft","tag-msft","tag-passwords","tag-secureauth","tag-security","tag-windows-10"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/rbach.net\/index.php\/wp-json\/wp\/v2\/posts\/76052","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/rbach.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/rbach.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/rbach.net\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/rbach.net\/index.php\/wp-json\/wp\/v2\/comments?post=76052"}],"version-history":[{"count":17,"href":"https:\/\/rbach.net\/index.php\/wp-json\/wp\/v2\/posts\/76052\/revisions"}],"predecessor-version":[{"id":131342,"href":"https:\/\/rbach.net\/index.php\/wp-json\/wp\/v2\/posts\/76052\/revisions\/131342"}],"wp:attachment":[{"href":"https:\/\/rbach.net\/index.php\/wp-json\/wp\/v2\/media?parent=76052"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/rbach.net\/index.php\/wp-json\/wp\/v2\/categories?post=76052"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/rbach.net\/index.php\/wp-json\/wp\/v2\/tags?post=76052"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}