Microsoft’s recent announcement on Passwordless Authentication has taken the industry by storm, raising many questions. So, in this blog we will look at What is Passwordless Authentication and explore the difference between this and Multi factor Authentication.
What is Microsoft Passwordless?
Microsoft now lets you remove passwords from Microsoft accounts to embrace a passwordless future. The software giant will allow users to sign into Microsoft accounts with its Microsoft Authenticator app, Windows Hello, a security key, or an SMS / email verification code instead of a password.
What we’ve been asked many times over the past few weeks is……“Is the Passwordless Authentication the same as Multi factor Authentication (MFA)?
The simple answer is no, MFA offers a process to give reassurance that the user is who they claim to be, by requesting an added form of verification over and above a password, adding an additional layer of security to access systems known as authentication.
In comparison, Passwordless Authentication allows access to systems with an authentication factor other than a traditional password, removing the password element completely. Passwordless unlike MFA may only involve one authentication factor, such as biometrics.
What are the risks of passwords?
Passwords are an attraction for attackers and are susceptible to a variety of attacks such as phishing, malware and credential theft. Research indicates increasing password complexity may result in less security, due to the weakest link of the security chain — the human factor. Many people cannot remember long or complex passwords, so they tend to write them down.
Here are some of the reasons why passwords are no longer sufficient:
- Passwords can now be cracked within minutes
- Employees use easy-to-hack passwords
- Passwords rely on a knowledge factor alone so they can be vulnerable to theft, sharing, repeat use, misuse, and other risks. Access through a stolen password is now the top entry point for a hacker
- Even complex passwords are no longer secure
Passwords are one of three possible authentication factors. Authentication is generally accomplished by validating one or more of three types of factors:
- Something you know (a password)
- Something you have (a hardware token/smart phone)
- Something you are (a fingerprint, facial recognition)
The Key Differences between Passwordless and MFA
| Passwordless | MFA |
|---|---|
| Username followed by Push Notification | Username & Password followed by Push Notification |
| Facial Recognition | Username & Password followed by Facial Recognition |
| Pin followed by Facial Recognition | Pin followed by Facial Recognition |
Don’t risk your entire business on the strength of user passwords: switch to superior authentication methods today, get in touch for more information on MFA and Passwordless Authentication.
