Authentication
Password theft is one of the greatest threats facing network security today. Passwords alone are easily compromised and are widely regarded as the weakest link in any given security system. Passwords are inherently vulnerable because it is only based on something you know, and that knowledge can be acquired in many ways.
User behavior is the biggest flaw to be exploited in a static-password only system. Users often select weak or "easily-guessed" passwords so that they can remember it. Family names, birthdates, pet names and other passwords of this nature are all 'guessable' If company guidelines require a more complex password pattern (numbers and letter in upper and lowercase combination), the user may have trouble remembering it and write it down on a post-it-note - which is usually somewhere near the computer.
User authentication is critical to all the other security measures we employ - weak authentication means weak security. To combat this, organizations are turning to two-factor authentication (2FA) as the first and most critical element of successful Identity Management. User authentication is critical to all the other security measures we employ - weak authentication means weak security.
