Authlogics Authlogics
  • Solutions
    • Password Security Auditing
    • Password Policy Compliance
    • Password Breach Database
    • Passwordless Authentication
    • Deviceless OTP
    • Single Sign-On
    • Cloud Protection
      • Amazon Web Services
      • Azure and Office 365
    • Helpdesks
    • Retail Banking
    • Transaction Verification
  • Products
    • Password Security Management
    • Multi-Factor Authentication
      • Authenticator Mobile App
      • PINgrid
      • PINphrase
      • PINpass
      • Yubikey
    • System Agents
      • ADFS Agent
      • Domain Controller Agent
      • Exchange Agent
      • Remote Desktop Agent
      • Windows Desktop Agent
  • Resources
    • Demonstration
    • Whitepapers
    • Datasheets
    • Case Studies
    • Use Cases
    • Pricing
    • Blog
    • Accolades
    • UK Government: G-Cloud
  • Partners
    • Find a Reseller
    • Find a Distributor
    • Technology Partners
    • Become a partner
    • Password Security Portal
  • Company
    • Contact Us
    • Intellectual Property
    • About Us
  • Support
    • Downloads
    • Documentation
    • Knowledge Base
    • Community
    • Log a call
Authlogics Authlogics
  • Solutions
    • Password Security Auditing
    • Password Policy Compliance
    • Password Breach Database
    • Passwordless Authentication
    • Deviceless OTP
    • Single Sign-On
    • Cloud Protection
      • Amazon Web Services
      • Azure and Office 365
    • Helpdesks
    • Retail Banking
    • Transaction Verification
  • Products
    • Password Security Management
    • Multi-Factor Authentication
      • Authenticator Mobile App
      • PINgrid
      • PINphrase
      • PINpass
      • Yubikey
    • System Agents
      • ADFS Agent
      • Domain Controller Agent
      • Exchange Agent
      • Remote Desktop Agent
      • Windows Desktop Agent
  • Resources
    • Demonstration
    • Whitepapers
    • Datasheets
    • Case Studies
    • Use Cases
    • Pricing
    • Blog
    • Accolades
    • UK Government: G-Cloud
  • Partners
    • Find a Reseller
    • Find a Distributor
    • Technology Partners
    • Become a partner
    • Password Security Portal
  • Company
    • Contact Us
    • Intellectual Property
    • About Us
  • Support
    • Downloads
    • Documentation
    • Knowledge Base
    • Community
    • Log a call
Password security management

Why you need a password security management solution

Kate Wotherspoonon 16th December 2019

In this article, we explain why you need a password security management solution. In a study conducted by Risk Based Security, it was found that 69 per cent of people have genuine concerns about their online identity being stolen. Yet, of those same people, 81 per cent still re-use their passwords, leaving themselves extremely vulnerable to breach. This polarity is baffling but entirely human. When we are forced to choose complex passwords in order to be secure, people will always opt to re-use their passwords so as not to have too many to forget.

The trouble is, however, that this practice leaves your business at risk.

Let’s say that a staff member — or, more likely, many staff members — uses their work password for their personal account… A common example is LinkedIn. Users often use their work email and the same password for both LinkedIn and their work accounts. If a breach then occurs on their personal LinkedIn account, this breach can directly impact your business and leave you exposed.

It is not just users and organisations that are aware of the re-use issue. Hackers know only too well how ‘lazy’ people get in favour of ease of use. Breaking one password is just the start. Once hackers gain access to a single account, they seek to expose others, and in most cases, this task is made very easy for them because of ‘password re-use laziness’.

This fact has been recognised by the National Institute of Standards and Technology (NIST) who have specifically addressed the issue as part of the SP 800-63B guidance. Guidance which at Authlogics we support and implement across our products to ensure your security, compliance and ease of use.

Securing the password

Passwords form the foundation for most businesses security policies, whether stand-alone or part of a multi-factor authentication (MFA) solution. While we advocate for the gradual phasing out of password reliance, we also employ solutions, such as the Password Security Manager to ensure that, if you are reliant on passwords, those passwords are going to be of the highest level of security.

So, with password re-use a serious issue, and breaches occurring daily, how can businesses keep their information, IP, staff and customers safe?

This is where the Authlogics Password Security Manager comes in.

The Password Security Manager is an easily installable solution which, in an instant, runs passwords through a database of more than 500 million known breaches to ensure that no one within your business is able to employ weak or previously breached passwords.

By analysing password changes in real-time, and using a combination of granular policy controls, a rules engine, a custom blacklist, heuristic scanning and the 500 million+ database of previously compromised passwords, you can be assured that your Active Directory is safe and secure.

This solution is fully compliant with the latest password guidance and forms a strong foundation for overall security compliance. In a matter of moments, the passwords in your business are:

  • Unique
  • Secure
  • Compliant

Once the Password Security Manager is in place, users no longer need to continually change their passwords. The only time changes are required is if the password is found to be breached.

The requirements from users are as simple as ensuring passwords are unique, not found in any breach, and typically 8 characters or more in length – as recommended by NIST. Making for happy users and a compliant, secure organisation.

Password security management – do you really need it?

Of course, the answer is yes. Passwords are inherently weak, and the efforts by most organisations to increase their complexity only causes staff to look for loopholes. More often than not, that means password re-use, which makes your business extremely vulnerable to breach.

A barrier for many businesses deploying these solutions is a concern of increased helpdesk costs. However, in the case of the Password Security Manager, the solution is non-intrusive and straightforward enough that staff can use it intuitively, without any formal guidance or pre-training required.

Your staff are not burdened with yet more password rules to remember, and you still get secure passwords which comply with the latest NIST SP 800-63B password policy standard.

If the following are appealing for your business, it’s time to consider the Password Security Manager:

  • Access to the Authlogics Password Breach Database of 520 million + breached passwords
  • No desktop software requirements
  • No need to change passwords on a regular basis, and no need for complex passwords with special characters and a mixture of upper and lower case.
  • Negate password dictionary and brute force attacks
  • Granular AD Group Policy-based password complexity controls
  • Intelligent heuristics scanning
  • Custom blacklists

Password security management – where to learn more

Learn more about the Authlogics Password Security Manager or get in touch to discuss how we can help improve the security of your passwords.

in Authentication
tags: Password, password security management, Passwords

Leave a Reply Cancel reply

  • Previous

    Why are financial services adopting SMS MFA when the industry recommends against it?

  • Next

    Three steps to password liberation

Recent Posts

  • If You Do One Thing on World Password Day, Find Out How Many of Your Passwords are Being Shared Around the World
  • The Road to Password Hell is Paved with Good Intentions
  • ARTICLE: When cutting costs on defending your networks isn’t an option
  • The Rise of Ransomware, Cryptocurrency Corruption, and Vaccine Vulnerabilities.
  • The biggest risk to retailers and consumers on Black Friday / Cyber Monday? Breached and insecure passwords

Recent Comments

  • The highway to password hell is paved with good intentions - Andre HOT on Have you been Pwned? Most likely
  • The street to password hell is paved with good intentions - Trend Directory on Have you been Pwned? Most likely
  • The highway to password hell is paved with good intentions - Theopenlab on Have you been Pwned? Most likely
  • The highway to password hell is paved with good intentions - Lecheyre.ch on Have you been Pwned? Most likely
  • The road to password hell is paved with good intentions - ilmi Wap on Have you been Pwned? Most likely

Archives

  • May 2022
  • March 2022
  • February 2022
  • December 2021
  • November 2021
  • October 2021
  • September 2021
  • August 2021
  • July 2021
  • June 2021
  • May 2021
  • April 2021
  • February 2021
  • December 2020
  • November 2020
  • October 2020
  • September 2020
  • August 2020
  • July 2020
  • May 2020
  • April 2020
  • February 2020
  • January 2020
  • December 2019
  • October 2019
  • September 2019
  • August 2019
  • July 2019
  • January 2019
  • September 2018
  • January 2018
  • October 2017
  • August 2017
  • July 2017
  • June 2017
  • May 2017
  • February 2017
  • January 2017
  • December 2016
  • November 2016
  • October 2016
  • September 2016
  • August 2016
  • July 2016
  • June 2016
  • May 2016
  • April 2016
  • March 2016
  • November 2015
  • October 2015
  • September 2015
  • August 2015
  • July 2015
  • June 2015
  • May 2015

Categories

  • Authentication
  • Awards
  • Business
  • Compliance
  • Customer Experience
  • Data Breach
  • Download
  • Implementation
  • Management
  • Marketing
  • Multi Factor Authentication
  • Password
  • Password Replacement
  • Password Security
  • Passwordless Authentication
  • PIN
  • Predictions
  • Remote Working
  • Security
  • Single Signon
  • Strategy
  • Uncategorised

Meta

  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

Contact us

UK: +44 1344 568 900
US: +1 408 706 2866

sales@authlogics.com
info@authlogics.com

Visit us

329 Doncastle Road, Bracknell,
Berkshire, RG12 8PE, UK

Map it »

1551 McCarthy Blvd, Suite 215,
Milpitas, CA, 95035, US

Map it »

Follow on

Legal information

Privacy Policy
© Authlogics Ltd. All Rights Reserved.