Passwordless is a hot topic, and rightly so, as shared-secret credentials represent not only a terrible user experience but also a major vulnerability in today’s modern infrastructure. Unfortunately, many so-called “passwordless” solutions are anything but.
In this presentation, Tim Callan and Jason Soroko will:
- Define what a true passwordless solution is, what isn’t and why the difference matters
- Show you how to tell if an approach is truly passwordless or merely “less password”
- Explain why Multi-Factor Authentication is merely a partial mitigator for the vulnerabilities inherent in shared-secret credentials
- Spell out strategies for dealing with situations where true passwordless is difficult or impossible to implement in order to minimize your exposure