How to Kill The Password – Buyer’s Guide to Passwordless Authentication
Employee Use Cases
Passwordless technology can be applied to both internal and external identities in the form of consumers or customers and citizens.
Employee identity – or workforce enablement as it is also known as – provides capabilities that allows organizations to securely provision staff with the appropriate application access so they can perform their job role.
Employee Use Case
Description
Replacement of Existing Hardware MFA
Many organisations have invested in hardware based MFA products such as one time password generators or proprietary biometric scanning technologies. They often have a high cost-per-user, are utilised by a small percentage (< 25%) of the user population and are costly to expand and customize.
Employee Use Case
Description
Augment Existing Technologies
Many existing workplace technologies have usernames and passwords at their core and provide no out of the box method for MFA or passwordless authentication. Existing technologies such as VDI (virtual desktop infrastructure), Windows desktop and server estates and Unix/Linux server infrastructure need augmenting with modular MFA and passwordless technology.
Employee Use Case
Description
Expand MFA to Remote Login
Remote login technologies such as VPNs (virtual private networks) and RAS (remote access servers) provide the basis for distributed working, which has accelerated since 2019 due to the global Covid-19 pandemic. Whilst many organisations are phasing out VPN technology due to cost and lack of security, an immediate priority is applying modern MFA and passwordless techniques to the remote access login process.
Employee Use Case
Description
Migration of Physical Access
Where physical onsite working is still a priority in sectors such as hi-tech manufacturing, pharmaceuticals, Industry 4.0 and health care, the use of smart cards and proximity cards could be phased out in place of mobile centric authentication – leveraging issued credentials with a biometric confirmation.
Employee Use Case
Description
Admin and PAM Migration
Privileged Access Management (PAM) and administrative controls have long been a part of a modern security architecture. In many cases, the administration team was often the first to receive MFA and contextual access control. This category is likely to be the first team in any staged migration process to passwordless authentication.
Employee Use Case
Description
Support for Zero Trust With Zero Passwords
Zero trust and continuous security has promoted an identity centric view of control. The emphasis on continual authentication and post authentication re-validation for high risk events and transactions places a need for a simpler and more transparent user verification process.
Employee Use Case
Description
Decoupled SSO
Many organisations have invested in complex centralised single sign on services that can integrate with a multitude of application types. These identity provider services have long lifespans (7+ years) and are often costly and difficult to extend and expand. A decoupled approach to passwordless technology allows for specialism and agility.
Employee Use Case
Description
Reduced Help Desk Costs
Operational efficiency with regards to employee identity and access management has always been a key focus for CIOs. Password resets are a major workload for even the most effective help desks and the migration to MFA doesn’t always reduce the burden – especially with regards to initial enrolment and lost device use cases. The removal of passwords in their entirety and less reliance on hardware based MFA can reduce that burden further.
We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept”, you consent to the use of ALL the cookies.
This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary cookies are absolutely essential for the website to function properly. This category only includes cookies that ensures basic functionalities and security features of the website. These cookies do not store any personal information.
Any cookies that may not be particularly necessary for the website to function and is used specifically to collect user personal data via analytics, ads, other embedded contents are termed as non-necessary cookies. It is mandatory to procure user consent prior to running these cookies on your website.