Authlogics Authlogics
  • Solutions
    • Password Security Auditing
    • Password Policy Compliance
    • Password Breach Database
    • Deviceless OTP
    • Single Sign-On
    • Cloud Protection
      • Amazon Web Services
      • Azure and Office 365
    • Helpdesks
    • Retail Banking
    • Transaction Verification
  • Products
    • Password Security Management
    • Multi-Factor Authentication
      • Authenticator Mobile App
      • PINgrid
      • PINphrase
      • PINpass
      • Yubikey
    • System Agents
      • ADFS Agent
      • Domain Controller Agent
      • Exchange Agent
      • Remote Desktop Agent
      • Windows Desktop Logon Agent
  • Resources
    • Demonstration
    • Whitepapers
    • Datasheets
    • Case Studies
    • Use Cases
    • Pricing
    • Blog
    • UK Government: G-Cloud
  • Partners
    • Find a Reseller
    • Find a Distributor
    • Technology Partners
    • Become a partner
    • Password Security Portal
  • Company
    • Contact Us
    • Intellectual Property
    • About Us
  • Support
    • Downloads
    • Documentation
    • Knowledge Base
    • Community
    • Log a call
Authlogics Authlogics
  • Solutions
    • Password Security Auditing
    • Password Policy Compliance
    • Password Breach Database
    • Deviceless OTP
    • Single Sign-On
    • Cloud Protection
      • Amazon Web Services
      • Azure and Office 365
    • Helpdesks
    • Retail Banking
    • Transaction Verification
  • Products
    • Password Security Management
    • Multi-Factor Authentication
      • Authenticator Mobile App
      • PINgrid
      • PINphrase
      • PINpass
      • Yubikey
    • System Agents
      • ADFS Agent
      • Domain Controller Agent
      • Exchange Agent
      • Remote Desktop Agent
      • Windows Desktop Logon Agent
  • Resources
    • Demonstration
    • Whitepapers
    • Datasheets
    • Case Studies
    • Use Cases
    • Pricing
    • Blog
    • UK Government: G-Cloud
  • Partners
    • Find a Reseller
    • Find a Distributor
    • Technology Partners
    • Become a partner
    • Password Security Portal
  • Company
    • Contact Us
    • Intellectual Property
    • About Us
  • Support
    • Downloads
    • Documentation
    • Knowledge Base
    • Community
    • Log a call
Password security management

Why you need a password security management solution

Kate Wotherspoonon 16th December 2019

In this article, we explain why you need a password security management solution. In a study conducted by Risk Based Security, it was found that 69 per cent of people have genuine concerns about their online identity being stolen. Yet, of those same people, 81 per cent still re-use their passwords, leaving themselves extremely vulnerable to breach. This polarity is baffling but entirely human. When we are forced to choose complex passwords in order to be secure, people will always opt to re-use their passwords so as not to have too many to forget.

The trouble is, however, that this practice leaves your business at risk.

Let’s say that a staff member — or, more likely, many staff members — uses their work password for their personal account… A common example is LinkedIn. Users often use their work email and the same password for both LinkedIn and their work accounts. If a breach then occurs on their personal LinkedIn account, this breach can directly impact your business and leave you exposed.

It is not just users and organisations that are aware of the re-use issue. Hackers know only too well how ‘lazy’ people get in favour of ease of use. Breaking one password is just the start. Once hackers gain access to a single account, they seek to expose others, and in most cases, this task is made very easy for them because of ‘password re-use laziness’.

This fact has been recognised by the National Institute of Standards and Technology (NIST) who have specifically addressed the issue as part of the SP 800-63B guidance. Guidance which at Authlogics we support and implement across our products to ensure your security, compliance and ease of use.

Securing the password

Passwords form the foundation for most businesses security policies, whether stand-alone or part of a multi-factor authentication (MFA) solution. While we advocate for the gradual phasing out of password reliance, we also employ solutions, such as the Password Security Manager to ensure that, if you are reliant on passwords, those passwords are going to be of the highest level of security.

So, with password re-use a serious issue, and breaches occurring daily, how can businesses keep their information, IP, staff and customers safe?

This is where the Authlogics Password Security Manager comes in.

The Password Security Manager is an easily installable solution which, in an instant, runs passwords through a database of more than 500 million known breaches to ensure that no one within your business is able to employ weak or previously breached passwords.

By analysing password changes in real-time, and using a combination of granular policy controls, a rules engine, a custom blacklist, heuristic scanning and the 500 million+ database of previously compromised passwords, you can be assured that your Active Directory is safe and secure.

This solution is fully compliant with the latest password guidance and forms a strong foundation for overall security compliance. In a matter of moments, the passwords in your business are:

  • Unique
  • Secure
  • Compliant

Once the Password Security Manager is in place, users no longer need to continually change their passwords. The only time changes are required is if the password is found to be breached.

The requirements from users are as simple as ensuring passwords are unique, not found in any breach, and typically 8 characters or more in length – as recommended by NIST. Making for happy users and a compliant, secure organisation.

Password security management – do you really need it?

Of course, the answer is yes. Passwords are inherently weak, and the efforts by most organisations to increase their complexity only causes staff to look for loopholes. More often than not, that means password re-use, which makes your business extremely vulnerable to breach.

A barrier for many businesses deploying these solutions is a concern of increased helpdesk costs. However, in the case of the Password Security Manager, the solution is non-intrusive and straightforward enough that staff can use it intuitively, without any formal guidance or pre-training required.

Your staff are not burdened with yet more password rules to remember, and you still get secure passwords which comply with the latest NIST SP 800-63B password policy standard.

If the following are appealing for your business, it’s time to consider the Password Security Manager:

  • Access to the Authlogics Password Breach Database of 520 million + breached passwords
  • No desktop software requirements
  • No need to change passwords on a regular basis, and no need for complex passwords with special characters and a mixture of upper and lower case.
  • Negate password dictionary and brute force attacks
  • Granular AD Group Policy-based password complexity controls
  • Intelligent heuristics scanning
  • Custom blacklists

Password security management – where to learn more

Learn more about the Authlogics Password Security Manager or get in touch to discuss how we can help improve the security of your passwords.

in Authentication
tags: Password, password security management, Passwords

Leave a Reply Cancel reply

  • Previous

    Why are financial services adopting SMS MFA when the industry recommends against it?

  • Next

    Three steps to password liberation

Recent Posts

  • 3.2 billion credentials (emails and passwords) rinsed up, cleaned out and COMBed
  • PRESS RELEASE: Authlogics Partners with Westcoast to Deliver Passwordless Authentication Solutions in the UK, Ireland, and Europe
  • Reflection & Prediction
  • Analyzing the Cit0day breach
  • Read all about it – your ‘Audit’ here!

Recent Comments

  • Authlogic Password Security Management Offer with CyberWhite - CyberWhite on Multi-Factor Authentication
  • Authlogic Password Security Management Offer with CyberWhite - CyberWhite on Password Security Auditing
  • Authlogic Password Security Management Offer with CyberWhite - CyberWhite on Password Security Management
  • Weekly Update 216 | Spyware.ws on Corporate Password Security with Troy Hunt
  • Weekly Update 216 | AdwareSearch.com on Corporate Password Security with Troy Hunt

Archives

  • February 2021
  • December 2020
  • November 2020
  • October 2020
  • September 2020
  • August 2020
  • July 2020
  • May 2020
  • April 2020
  • February 2020
  • January 2020
  • December 2019
  • October 2019
  • September 2019
  • August 2019
  • July 2019
  • January 2019
  • September 2018
  • January 2018
  • October 2017
  • August 2017
  • July 2017
  • June 2017
  • May 2017
  • February 2017
  • January 2017
  • December 2016
  • November 2016
  • October 2016
  • September 2016
  • August 2016
  • July 2016
  • June 2016
  • May 2016
  • April 2016
  • March 2016
  • November 2015
  • October 2015
  • September 2015
  • August 2015
  • July 2015
  • June 2015
  • May 2015

Categories

  • Authentication
  • Business
  • Compliance
  • Customer Experience
  • Data Breach
  • Download
  • Implementation
  • Management
  • Marketing
  • Multi Factor Authentication
  • Password
  • Password Replacement
  • PIN
  • Remote Working
  • Security
  • Strategy
  • Uncategorised

Meta

  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org

Contact us

UK: +44 1344 568 900
US: +1 408 706 2866

sales@authlogics.com
info@authlogics.com

Visit us

Access Office Suites, Willoughby Road,
Bracknell, Berkshire, RG12 8FP, UK

Map it »

1551 McCarthy Blvd, Suite 215,
Milpitas, CA, 95035, US

Map it »

Follow on

Legal information

Privacy Policy
© Authlogics Ltd. All Rights Reserved.