![]() ![]() This means, if someone gets physical access to your device, attacker might not get access to your profile until unless having access to additional layer of device. Going passwordless gives you the flexibility to login on any devices by using different login methods, lets say going with passwordless using Microsoft Authenticator app which generates a software token and allows you authenticate the login by simply clicking on Allow / deny and having code displayed at both ends (on device & Authenticator app) to verify. Hence, there will be a time, you might not able to keep the track of your password changes until unless you are not using any Password management software such as 1password, LastPass, Dashlane etc. ![]() Guessing the passwords by hackers is more easy, and while keep on remembering this passwords for you is less convenient, and when any attack happens, you might get alert for changing the password, but again who can remember a new password, until another attack happens and again you have to change it. We might need to break the barrier in terms of old school thinking of going with passwordless technology. Passwordless Authentication on other hand is not only Convenient but also provides high Security. Hence, MFA provides high security but makes the process inconvenient for users. Going with Password + Two Factor Authentication which is also known as Multi-factor authentication (MFA) increases the complexity by adding another layer of authentication. If we look into the below quadrant, we have to make a balance between Inconvenient/ Convenient & Low Security / High Security. Going passwordless is a perfect combination of conveniency + High Security. This might comes in mind that why we actually need this. Verification code to email – getting notification/code on email ID.Verification code to mobile phone – getting notification/code on phone through SMS.Security key – FIDO2 security keys method which uses public/private-key credentials.Windows Hello – Lets you sign in using biometrics with your face, iris scan, fingerprint or PIN. ![]() Microsoft Authenticator app – application installed on your device which is used to authenticate the request for login request.However, now it is available for all users who are using Microsoft account when logging on to Windows 10 / windows 11 devices, you can completely go passwordless by using one or more of the login methods provided by Microsoft: Why do we need to implement passwordless. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |