The TruU Hub

It is hard to imagine all this started with an inconspicuous password breach.

Over the last couple of weeks, the Colonial Pipeline attack suddenly became a household event. Mainly because it started to impact the daily lives of everyday citizens. Gas, gasoline, and home heating oil deliveries were disrupted. People were driving to multiple gas stations just to find available gasoline. Yet behind the scenes there were larger and more critical consequences that were starting to play out. on May 12th, President Biden issued an executive order on improving the nation’s cybersecurity ; last week five million dollars in ransomware got paid out; one of the most notorious ransomware organizations suddenly announced they were going into a cooling off period. (More like waiting for things to cool down). 

Is Windows Hello Enough for Enterprise Passwordless Access?

Organizations are rethinking their workplaces and options for their workforces. Companies in regulated industries and those with higher security needs where work once occurred only in fully-trusted facilities now need to support work anywhere in the world, on any type of device securely. The disintegration of the enterprise perimeter suddenly got more pronounced and very apparent as organizations scrambled to support a geographically dispersed workforce with the need to support the most varied locations.

Passwordless authentication has been employed for customer identity for many years and is now seeing growing interest from financial institutions for their employees and partners. Anti-money laundering (AML) laws and KYC (Know Your Customer) compliance drove interest in anti-fraud/money laundering customer identity first, but the adoption of newer authentication methods such as biometrics and behavioral biometrics, and more recently the use of identity proofing technology is just as applicable for the workforce.

What is passwordless authentication in 2020, where biometrics are quickly becoming a mainstream technology and AIML (artificial intelligence / machine learning) approaches are on the horizon? In this article we explore the passwordless authentication fully from a generic perspective (not specific to an enterprise or consumer use case), and provide a view of where the market stands today and what it will take to be successful in the future.