The SecureAuth 2020 State of Identity Report

Back to Blog
May 04, 2020
Paul Wiederkehr

By Paul Wiederkehr – Product Marketing, SecureAuth

The growth of the Internet has been nothing short of amazing, and in just under three decades the sheer number of people going online every day for personal use or business purposes is staggering.

  • In 1996 the total number of websites was 258k and the number of internet users was 45 million
  • In 2000 the numbers grew to 17.1 million websites and 413 million users
  • In 2017 the number of websites was 1.76 billion with 3.4 billion users
  • In 2020 over 4.3 billion active users are online

As we enter the second decade of the 21st century, and with the Internet having woven itself into our everyday life, we thought the timing was right to explore how people are interacting with technology to access resources online.  We launched a survey to gather an understanding of our overall appetite and/or tolerance for the underlying security essential to safely and responsibly use applications, portals, systems, business tools, and online accounts in our everyday life.  The objective is to gain a better understanding of the psyche of the average person – from Generation Z to Baby Boomers and beyond – when it comes to security and personal privacy, and the habits that are  contributing to the challenge of protecting and securing our online privacy.

Are Passwords Your Achilles Heel

We like our passwords.  In fact, we like them so much that we take them everywhere with us.  That is to say that we use the same password all over the place.  Why?  It’s easy and convenient.

  • 53% of people admit to using the identical password for more than one account
  • 62% use the same password across as many as seven accounts

And in the workplace:

  • 34% of people in business leadership positions admit to using one of the top 10 most common passwords – ABC123, Qwerty, 123123, Admin, etc., to access business resources

And yes, these password habits lower our online security profile and make it easier for cyber-criminals to compromise our online accounts. According to the survey, 36% of people have had on of their online accounts hacked.

We like our passwords so much that many people can’t help but share them with others.  And because people are sharing their passwords for banking-related accounts, among other things, over formats that can be easily hacked (SMS and email), these people are creating unnecessary risk for themselves. In addition, many are quite comfortable sharing personal information (SSN, DOB, address, email, and credit card #) online in return for something free.  Surprisingly, 4% of people would provide their SSN to receive a gift card or coupon – that’s unbelievable! The information people are willing to give away are like pieces to a puzzle for a cyber-criminal. And over time the sharing creates a nice profile that reduces an individual’s online security and places valuable data at risk.

Are Biometrics the Future of Passwords

When it comes to providing access to online resources, three common factors can be used in the process: Something you know (such as a password), Something you have (such as a smart card), or Something you are (such as a fingerprint). I think it’s safe to say we’re all familiar with the use of biometrics (voice recognition, fingerprint reader, facial recognition, or retina scan) to gain access to secure resources.  And I’m positive many of us use biometrics today to access mobile devices such as a phone or tablet. However fewer than 1 in 3 people are comfortable sharing various forms of their biometric data with either a company they purchase goods and services from or the government. Why?

  • 57% of people say it feels to personal
  • 43% believe their data could get hacked

Despite high levels of discomfort, many people are already using biometrics. The survey reals we are using fingerprint or facial recognition for the following:

  • Unlock phones and computers
  • Credit card and banking authorization
  • TSA airport lines
  • Access to the workplace or office
  • Entering our own homes

49% of people have an appetite for using biometrics when they know it will save them time. It appears the future of protecting our identity and improving security lies in biometrics.  For now however, more education and awareness is needed to ease the minds of the average person to improve their appetite and willingness to embrace the potential of biometrics.

Are We Ready for What’s Next

Hackers know that people are the ideal target to attack in order to obtain credentials needed to access valuable resources because of our lax approach to passwords. The survey clearly identified that people inside or outside the office are not complying with password best practices which is unfortunately putting our personal data and privacy at risk. Beyond personal data, 44% of people are using the same password at work that they use to access a personal online account.  If any of these personal accounts are compromised, the potential exists that the business account(s) sharing the same password could be compromised as well. Based on the overall survey results, it seems fair to say that passwords no longer provide the level of protection we require.  Our approach to securing personal data and privacy must start by moving beyond passwords and incorporating more advanced methods of authentication to validate a user’s identity thereby reducing the threat surface and better protecting our valuable data and personal information.

Read the 2020 State of Identity Report

 

 

Never Miss a Beat
Subscribe to Our Blog

SecureAuth Identity Platform Adaptative Authentication

Identity and Access Management

Empower your digital initiatives with secure access for everyone and everything connecting to your business

Product Features

Adaptive Authentication

Extend verification of a user identity with contextual risk checks

Multi-Factor Authentication

Leverage a broad portfolio of authentication factors for desktop and mobile

Intelligent Risk Engine

Protect your identities with advanced risk profiling analytics

Single Sign-On

Provide app discovery and one-click login through portal or desktop SSO

User Lifecycle Management

Enable admins with strong CRUD capabilities and users with self-service tools

Secure All Identities

CIAM

Customer Identities

Deliver a frictionless customer experience safeguarding user data and privacy

B2E

Workforce Identities

Govern and control access rights for employees, partners, and contractors

Moving Beyond Passwords

Learn how passwords alone no longer provide the appropriate level of protection, nor confidence, required to secure valuable resources

Initiatives

Passwordless Authentication

Reduce the risk of breaches by eliminating passwords

2FA is Not Enough

Block popular phishing and brute force attacks used by bad actors

Protecting Office 365

Extend adaptive authentication and flexible MFA to all apps including Office 365

Securing Portals and Web Apps

Balance strong security and an exceptional user experience

RSA Migration

Transition to a modern identity and access management solution

Industries

Healthcare

Financial Services

Retail

Energy and Utilities

Public Sector

Resources

White Papers

eBooks

Recorded Webinars

Analyst Reports

Innovation Labs

Documentation

Support Portal

Events & Webinars

Events

Webinars

Calculate Your Savings

Lower support costs by enabling your users the control to reset passwords, account unlocks, device enrollment and update profiles

Meet SecureAuth

About SecureAuth

Leadership

Newsroom

Careers

Contact