{"id":238320,"date":"2021-04-29T15:00:54","date_gmt":"2021-04-29T12:00:54","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/passwordless-logins-vs-multi-factor-authentication-cloudsavvy-it\/"},"modified":"2021-04-29T15:00:54","modified_gmt":"2021-04-29T12:00:54","slug":"passwordless-logins-vs-multi-factor-authentication-cloudsavvy-it","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/passwordless-logins-vs-multi-factor-authentication-cloudsavvy-it\/","title":{"rendered":"#Passwordless Logins vs Multi-Factor Authentication \u2013 CloudSavvy IT"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_84 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-6a2c78a663f9f\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #dd3333;color:#dd3333\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #dd3333;color:#dd3333\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-6a2c78a663f9f\" checked aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/buradabiliyorum.com\/en\/passwordless-logins-vs-multi-factor-authentication-cloudsavvy-it\/#Cybersecurity_for_Businesses\" >Cybersecurity for Businesses<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/buradabiliyorum.com\/en\/passwordless-logins-vs-multi-factor-authentication-cloudsavvy-it\/#What_Are_Passwordless_Logins\" >What Are Passwordless Logins?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/buradabiliyorum.com\/en\/passwordless-logins-vs-multi-factor-authentication-cloudsavvy-it\/#What_Is_Multi-Factor_Authentication\" >What Is Multi-Factor Authentication?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/buradabiliyorum.com\/en\/passwordless-logins-vs-multi-factor-authentication-cloudsavvy-it\/#How_Well_do_They_Work_With_Businesses\" >How Well do They Work With Businesses?<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/buradabiliyorum.com\/en\/passwordless-logins-vs-multi-factor-authentication-cloudsavvy-it\/#Security\" >Security<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/buradabiliyorum.com\/en\/passwordless-logins-vs-multi-factor-authentication-cloudsavvy-it\/#Ease_of_Use\" >Ease of Use<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/buradabiliyorum.com\/en\/passwordless-logins-vs-multi-factor-authentication-cloudsavvy-it\/#Scalability\" >Scalability<\/a><\/li><\/ul><\/li><\/ul><\/nav><\/div>\n<p><strong>&#8220;#Passwordless Logins vs Multi-Factor Authentication \u2013 CloudSavvy IT&#8221;<\/strong><\/p>\n<div id=\"article-content-area\">\n<figure style=\"width: 700px\" class=\"wp-caption alignnone\"><img loading=\"lazy\" decoding=\"async\" class=\"type:primaryImage wp-image-10903 size-full\" data-pagespeed-lazy-src=\"https:\/\/www.cloudsavvyit.com\/p\/uploads\/2021\/04\/517924bf.png?width=1200&amp;trim=1,1&amp;bg-color=000&amp;pad=1,1\" alt=\"\" width=\"700\" height=\"350\" src=\"https:\/\/www.shutterstock.com\/image-photo\/fingerprint-scanner-record-working-time-465179150\" data-credittext=\"Shutterstock\/K.Chuansakul\" onload=\"pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\" onerror=\"this.onerror=null;pagespeed.lazyLoadImages.loadIfVisibleAndMaybeBeacon(this);\"\/><figcaption class=\"wp-caption-text\"><span class=\"type:primaryImage imagecredit\"><a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.shutterstock.com\/image-photo\/fingerprint-scanner-record-working-time-465179150\">Shutterstock\/K.Chuansakul<\/a><\/span><\/figcaption><\/figure>\n<p>When upgrading to the scale of a business, reputable login and password protection methods need to stand up to scrutiny. But between forgoing passwords altogether for alternative identity verification methods and adding a layer of security to traditional passwords, which is the right choice?<\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"Cybersecurity_for_Businesses\"><\/span>Cybersecurity for Businesses<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Cybersecurity for businesses is essential to protecting their digital assets. But while it\u2019s relatively easy to implement strong and all-encompassing physical and digital security systems that cover all aspects and eliminate emerging gaps, the balance of the system can easily fall into chaos when the human element is introduced into the mix. Unlike with how devices, <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/download-scripts-themes-apps\/\" data-internallinksmanager029f6b8e52c=\"9\" title=\"Download Scripts &amp; Themes &amp; Apps\" target=\"_blank\" rel=\"noopener\">app<\/a>s, and systems would react with the security system, it\u2019s much harder to predict the actions of people in the system.<\/p>\n<p>Most cyberattacks directed at individuals and corporations tend to take advantage of the human element. In 2017, <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/chiefexecutive.net\/almost-90-cyber-attacks-caused-human-error-behavior\/\">over 90 percent of cyberattack<\/a>s took advantage of people within the network both as primary and secondary means of attack. Although, the exploits weren\u2019t limited to taking advantage of direct human error and poor cyber hygiene. They also employed phishing schemes over a long period of time to create a way in.<\/p>\n<p>So while raising cybersecurity awareness among your staff members, especially those with high access privileges, is necessary, it\u2019s also important to secure access points to mitigate errors and exploitation. But between eliminating the risk of a password that could be guessed or leaked and adding a verification method beyond a traditional password, which one should you use?<\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"What_Are_Passwordless_Logins\"><\/span>What Are Passwordless Logins?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Passwordless logins, also known as passwordless authentication, are an identity authentication method that allows users to log in to computer systems and accounts without having to enter a password combination. The login approach uses an asymmetric encryption method and two cryptographic keys\u2014private and public. What makes it different from traditional login methods is the lack of knowledge-based credentials, where the system and the user need to have identical copies of the password.<\/p>\n<p>To qualify as a passwordless login, the login credential needs to be something the user acquires the moment of logging in, like receiving an email or an SMS message with a link or a randomly-generate code. Another option is having the login key be a bit of information that\u2019s unique to the user and can\u2019t be changed or replicated like biometrics; anything from their fingerprints to face and voice.<\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"What_Is_Multi-Factor_Authentication\"><\/span>What Is Multi-Factor Authentication?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Multi-factor authentication (MFA) is a digital identity verification and authentication method that adds one or more steps to log in on top of passwords. Its main purpose is to prevent unauthorized access to an account or device in case the password fails.<\/p>\n<p>There are many ways you can add MFA to an account. It may overlap with passwordless logins if the second and third steps of the login process include an email or SMS message code, or scanning in the user\u2019s biometrics. More common methods include using a one-time password (OTP) that\u2019s generated on a separate device. One of the previous approaches is often layered with a login token the user can scan or insert in the form of a USB stick into the device to log in.<\/p>\n<h2 role=\"heading\" aria-level=\"2\"><span class=\"ez-toc-section\" id=\"How_Well_do_They_Work_With_Businesses\"><\/span>How Well do They Work With Businesses?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Whatever the solution, just because it works for users or small teams, doesn\u2019t mean it\u2019d work just the same with businesses. The level of security threats varies drastically between average internet users and corporations with a known name and a <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/general\/\" data-internallinksmanager029f6b8e52c=\"3\" title=\"General\" target=\"_blank\" rel=\"noopener\">general<\/a> public understanding of what data their systems and networks may hold.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Security\"><\/span>Security<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>When it comes to login credentials, security is measured by how hard it is for an unauthorized third-party to acquire or spoof the logins. For passwordless authentication, it depends on the method used to verify the user\u2019s identity and how secure it is. If it relies on a code or link sent via email or text messages, then the login info is only as secure as the email or SIM card. This can turn into an endless chain where every next step in the login chain needs its own verification method and security. For instance, emails can be secured by enabling two-factor authentication (2FA), a biometric, or hard or soft tokens.<\/p>\n<p>Biometric spoofing, on the other hand, relies on the accuracy and intelligence of the system used to identify the elements. <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/technology\/\" data-internallinksmanager029f6b8e52c=\"4\" title=\"Technology\" target=\"_blank\" rel=\"noopener\">Technology<\/a> varies even by consumer-grade companies, where Android devices were tricked by a 3D printed face <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.anrdoezrs.net\/links\/3607085\/type\/am\/sid\/10847\/https:\/\/www.forbes.com\/sites\/thomasbrewster\/2018\/12\/13\/we-broke-into-a-bunch-of-android-phones-with-a-3d-printed-head\/\">while iPhone devices weren\u2019t<\/a>.<\/p>\n<p>When it comes to MFA, because it still relies on a traditional password that could be compromised, a portion of the hacker\u2019s work is done for them if they manage to guess it, retrieve it from a breached database, or use a brute-force attack to guess it. This leaves a big portion of the security in the hands of the second and third authentication methods used and how hard they\u2019re to hack or spoof.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Ease_of_Use\"><\/span>Ease of Use<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>While it\u2019s essential for all employees in a company to know the basics of cybersecurity, especially if their work includes them logging in to a system, account, or device connected to others in the company, it\u2019s important that the login requirements aren\u2019t too technical. Using location data or biometrics to log in can be straightforward and easy to scan, especially with the rise of face recognition and fingerprints in most consumer-grade smartphones and desktops.<\/p>\n<p>The same can\u2019t be said about soft and hard authentication tokens, codes, and links. Such methods have more than one step to verify and include transferring data. Also, most of them rely on emails and cellphones, which are hackers\u2019 preferred venues of attacks.<\/p>\n<p>Having varying levels of security and technical knowledge in your company might mean you\u2019d have to adapt different security methods and login approaches depending on the department. While this ensures utmost security and reduces the element of human error, it adds work to making sure all logins are still as secure with no publicly known vulnerabilities and are compatible with the main system.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Scalability\"><\/span>Scalability<span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Scalability and cost play a primary role in what security measure your company might decide to adopt. Passwords and direct methods of MFA can be easier to implement as they often rely on the employee\u2019s preexisting devices, emails, and phone numbers. But when it comes to tokens and biometrics\u2014whether as MFA or passwordless authentication\u2014scalability and cost can be an issue due to the needed number of physical cryptographic keys, biometric scanners, and location verification software.<\/p>\n<p>To get around the cost and scalability issues, consider segmenting network security. That way, departments with access to more sensitive information can have the most secure authentication methods while other departments are isolated with less sophisticated approaches.\n<\/p><\/div>\n<blockquote><p><strong><span style=\"color: #ff6600;\">If you liked the article, do not forget to share it with your friends. Follow us on\u00a0<span style=\"color: #ff0000;\"><a style=\"color: #ff0000;\" href=\"https:\/\/news.google.com\/publications\/CAAqBwgKMLG0nwswvr63Aw\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">Google News<\/a><\/span>\u00a0too, click on the star and choose us from your favorites.<\/span><\/strong><\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\">For forums sites go to <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/forum.buradabiliyorum.com\/\" target=\"_blank\" rel=\"noopener\">Forum.BuradaBiliyorum.Com<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\"><strong>If you want to read more like this article, you can visit our <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/en.buradabiliyorum.com\/technology\/\" target=\"_blank\" rel=\"noopener\">Technology category.<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<p><span style=\"color: black;\"><a style=\"color: #ff9900;\" href=\"https:\/\/www.cloudsavvyit.com\/10847\/passwordless-logins-vs-multi-factor-authentication\/\" target=\"_blank\" rel=\"noopener\">Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8220;#Passwordless Logins vs Multi-Factor Authentication \u2013 CloudSavvy IT&#8221; Shutterstock\/K.Chuansakul When upgrading to the scale of a business, reputable login and password protection methods need to stand up to scrutiny. But between forgoing passwords altogether for alternative identity verification methods and adding a layer of security to traditional passwords, which is the right choice? Cybersecurity for&#8230;<\/p>\n","protected":false},"author":1,"featured_media":238321,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.cloudsavvyit.com\/p\/uploads\/2021\/04\/517924bf.png","fifu_image_alt":"","footnotes":""},"categories":[18],"tags":[],"class_list":["post-238320","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technology"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/238320","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=238320"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/238320\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media\/238321"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=238320"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=238320"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=238320"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}