Authenticate Without Usernames and Passwords

Remembering passwords is hard, which is why more than 50% of users have reused passwords across multiple websites. Creating passwords that rely on personal information makes accounts vulnerable to dictionary attacks. Using a password managementsystem is one way to deal with the password problem, but some of these services themselves are vulnerable. This paper proposes that ForgeRock Go, our implementation of the latest standard in passwordless authentication, can reduce or eliminate reliance on username and password based authentication, and improve your organization’s security...

Remembering passwords is hard, which is why more than 50% of users have reused passwords across multiple websites.

Creating passwords that rely on personal information makes accounts vulnerable to dictionary attacks. Using a password managementsystem is one way to deal with the password problem, but some of these services themselves are vulnerable.

This paper proposes that ForgeRock Go, our implementation of the latest standard in passwordless authentication, can reduce or eliminate reliance on username and password based authentication, and improve your organization’s security posture.

Read more...