The uses of technology in recent years has grown exponentially and there’s a security measure that deserves to be ditched: the password. Why? Because it sucks.
Almost everything we do now has a digital component that requires a password on a login form. The password is still a primary form of identification is concerning because it’s been proven many times over that it is as useful as a chocolate teapot when it comes to digital security.
With so many parts of our lives dependent on logging in to apps and digital devices and services, people tend to go with something easy to remember, which is invariably predictable and uncomplicated and as a result fairly easy to hack. Though it is not hard to do, people seem unwilling to create genuinely unique passwords across all of the many platforms they use, despite it being in their best interest. However, we all know the frustrations a forgotten password can cause, so the onus can’t just be put on the people who create them; it’s clear that the majority of current systems are insufficient for the modern day and we must take steps in eradicating this flawed form of identification.
Passwords are part of an entrenched user interface that gets used out of habit more than anything else. As well as passwords being hard to remember, they are as fiddly as they are outdated.
Biometric security, our focus at SmilePass, will eventually replace passwords regardless of the industry or service. However, it is important to point out here that biometrics aren’t inherently more secure than passwords; but it does shift the burden from the user to the provider and ultimately reduce the costs providers often burden due to the growing types of fraud.
The clear strengths for users of biometrics are obvious: you cannot forget your face, your voice or your fingerprints — and if used together in a multi-modal way it creates a far stronger and more secure system than a simple plain text password.
Biometric security is a technology that becomes increasingly stronger when combined with deep learning and accumulative data. Voice recognition technology, for example, is advancing rapidly and logging into your devices with a spoken passphrase could add a natural secondary authentication in a fairly straightforward way. Voice printing as a layer on this could recognise if someone is the credit card holder.
In replacement of the redundant plaintext password, I believe we’ll see interfaces that require face recognition in combination with a spoken passphrase and voice printing – which is a three-factor authentication.
Whichever way identification is heading, it is clear that passwords aren’t fit for purpose and companies would be foolish to not recognise this and move away from it before they get hit with a data breach scandal that has proven can be financially costly as well as a public relations disaster.
Let’s hope that we soon see the death of the infamous QWERTY123, which, if spoken, could be as secure as a random thrash of the keyboard. Security will move from being something that you remember to being something you are, and that’s a lot more powerful.
To find out more information about how our identity management solution and biometric authentication works take a look here.