{"id":4239,"date":"2019-02-05T12:51:48","date_gmt":"2019-02-05T16:51:48","guid":{"rendered":"https:\/\/solutionsreview.com\/identity-management\/?p=4239"},"modified":"2019-02-05T12:51:48","modified_gmt":"2019-02-05T16:51:48","slug":"its-time-to-embrace-password-security-strategies","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/identity-management\/its-time-to-embrace-password-security-strategies\/","title":{"rendered":"It&#8217;s Time to Embrace Password Security Strategies"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-2422\" src=\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/03\/glowing-fingerprint-mod.jpg\" alt=\"It's Time to Embrace Password Security Strategies\" width=\"800\" height=\"400\" srcset=\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/03\/glowing-fingerprint-mod.jpg 800w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/03\/glowing-fingerprint-mod-300x150.jpg 300w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/03\/glowing-fingerprint-mod-768x384.jpg 768w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/03\/glowing-fingerprint-mod-540x270.jpg 540w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/03\/glowing-fingerprint-mod-162x81.jpg 162w, https:\/\/solutionsreview.com\/identity-management\/files\/2018\/03\/glowing-fingerprint-mod-360x180.jpg 360w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Despite their inherent problems, most users interact with their digital identities through passwords. Therefore, your enterprise must start to develop and adopt password security strategies across the network.<\/span><\/p>\n<p style=\"text-align: justify\"><div class=\"widget\"><div class=\"aside-card\">\t\t\t<div class=\"textwidget\"><p><a class=\"iam-inject\" href=\"https:\/\/solutionsreview.com\/identity-management\/get-a-free-privilieged-access-management-solutions-buyers-guide\/\" target=\"_blank\" rel=\"noopener\"><img loading=\"lazy\" decoding=\"async\" class=\"alignleft size-full wp-image-1682\" title=\"\" src=\"https:\/\/solutionsreview.com\/identity-management\/files\/2020\/01\/PAM_BG_SB_800.gif\" alt=\"Download Link to Privileged Access Management Buyer's Guide\" width=\"800\" height=\"100\" \/><\/a><\/p>\n<\/div>\n\t\t<\/div><\/div><\/p>\n<h3 style=\"text-align: justify\"><b>Why Your Enterprise Needs Password Security Strategies<\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Unfortunately, trusting employees to create strong passwords on their own may no longer serve as a tenable strategy. <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">According to the <\/span><a href=\"https:\/\/www.idtheftcenter.org\/2018-end-of-year-data-breach-report\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400\">Identity Theft Resource Center\u00ae and CyberScout\u00ae Annual End-of-Year Data Breach Report<\/span><\/a><span style=\"font-weight: 400\"> hackers continue to target and exploit usernames and passwords for their attacks, especially when users repeat their credentials across multiple accounts. Furthermore, through publicly available personal information, hackers can guess the passwords of users and apply it to all of their accounts; after that, it is only a matter of time before they find a weak link. \u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Adding to these issues, users continue to <a href=\"https:\/\/solutionsreview.com\/identity-management\/lastpass-releases-the-2018-global-password-security-report\/\" target=\"_blank\" rel=\"noopener\">select and reuse passwords<\/a> annually rated as (frankly) embarrassingly weak and easily cracked. This distinct problem stems from employee fears of forgetting their passwords. \u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\"><a href=\"https:\/\/solutionsreview.com\/identity-management\/how-password-security-can-improve-your-cloud-identity-management\/\" target=\"_blank\" rel=\"noopener\">Password security strategies<\/a> encourage employees to create unique, non-guessable passwords for their digital identities thereby keeping them and your business safe. Also, password security strategies help employees remember more complex passwords, breaking their dependence on repeated or simplistic passwords. \u00a0<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>What Do Password Security Strategies Entail? <\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Thankfully, you can embrace <a href=\"https:\/\/solutionsreview.com\/identity-management\/2019-future-of-password-security-mfa\/\" target=\"_blank\" rel=\"noopener\">password security strategies<\/a> and identity and access management best practices simultaneously; they\u2019re basically one and the same. Moreover, password security strategies often prove fairly simple to conceptualize. Good places to start include: <\/span><\/p>\n<ul style=\"text-align: justify\">\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">Enacting Multifactor Authentication (MFA). Multifactor authentication takes some of the pressure off passwords to keep identities secure by themselves. Your enterprise can adjust the authentication factors granularly or based on threat intelligence as well. <\/span><\/li>\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">Enacting Single Sign-On (SSO). Single Single-On reduces the number of passwords employees must remember to access their role-relevant resources, therefore reducing stress. <\/span><\/li>\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">Mandating unique passwords. Passwords should have no direct affiliation with employee\u2019s personal or professional lives, and optimally should be over 16 characters in length with numbers and punctuation. Ideally, employees should use a sentence or phrase. For example, passwords should avoid birthdays, job titles, or children names. However, \u201cHelloMr.3rown!\u201d could take hackers years to crack if not decades. <\/span><\/li>\n<li style=\"font-weight: 400\"><span style=\"font-weight: 400\">Deploy a next-gen identity and access management solution with password management capabilities. Password management helps employees remember their passwords automatically through the network and recognized endpoints, geolocations, and time-stamps, reducing the dependence of reused passwords. <\/span><\/li>\n<\/ul>\n<h3 style=\"text-align: justify\"><b>What Password Security Strategies Do Experts Recommend? <\/b><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">We spoke with identity and access management experts in the wake of the <\/span><a href=\"https:\/\/www.idtheftcenter.org\/2018-end-of-year-data-breach-report\/\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400\">Identity Theft Resource Center\u00ae and CyberScout\u00ae Annual End-of-Year Data Breach Report<\/span><\/a><span style=\"font-weight: 400\">. Here\u2019s what they had to say: \u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0\u00a0<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>Franklyn Jones, CMO, <\/b><span style=\"color: #3366ff\"><a style=\"color: #3366ff\" href=\"https:\/\/www.cequence.ai\/\" target=\"_blank\" rel=\"noopener\"><b>Cequence<\/b><\/a><\/span><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">\u201cUnfortunately for the bad guys these data breaches are gifts that keep on giving, long after the news headlines fade away. \u00a0Millions of these stolen credentials find their way to the dark web, where they are acquired by other bad actors who then orchestrate automated bot attacks targeting other websites where those credentials might give them fraudulent access to private accounts. Without proper security safeguards, those automated attacks can be quite successful because people tend to use the same login credentials on multiple sites.\u201d<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>George Wrenn, CEO, <\/b><span style=\"color: #3366ff\"><a style=\"color: #3366ff\" href=\"https:\/\/www.cybersaint.io\/\" target=\"_blank\" rel=\"noopener\"><b>CyberSaint Security<\/b><\/a><\/span><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">&#8220;Due to the complexity of our day to day lives and the technology, processes, and people involved in them, the question of a cybersecurity incident is no longer a matter of \u2018if\u2019 but \u2018when.\u2019 Cybercriminals are picking up on weak spots that organizations have, and are evolving just as we are at the pace of technical innovation, such that the complexities only continue to accumulate.\u201d <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">&#8220;This is why cybersecurity management must include measurement. Every business function has metrics\u2014not just the finance unit where financial health is concerned, but the HR unit measures employee turnover, marketing, and sales units manage customer adoption&#8230; cybersecurity too needs measurement in order to be effective.\u201d <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">\u201cWithout a truly metrics-driven approach when adopting best practices, there is no tangible way to communicate program effectiveness. The only way we can continue to keep up\u2014and more importantly get better at keeping up\u2014with the &#8220;bad guys&#8221; is if we have an efficient cycle of best practice adoption, measurement, analysis, and remediation that is easily communicable and measurable like any other business function.&#8221;<\/span><\/p>\n<h3 style=\"text-align: justify\"><b>Rod Simmons, VP of Product Strategy,<\/b><span style=\"color: #3366ff\"><a style=\"color: #3366ff\" href=\"https:\/\/www.stealthbits.com\/\" target=\"_blank\" rel=\"noopener\"> <b>STEALTHbits Technologies<\/b><\/a><\/span><\/h3>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">&#8220;In situations where a user has a weak password it is an &#8220;Aw-shucks&#8221; moment for the user; however, the administrators of the system shoulder some of the blame as they allowed the users to be so careless. As an attacker, the more frequently you see an email address used as a primary login method or recovery method, the more apparent it becomes whether that account is critical. If I have access to this email address, I can request password resets.\u201d<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">&#8220;Single Sign-On using technologies like Microsoft Account, Google Account, or Facebook are great for users, as it means there&#8217;s one less credential to manage poorly. The problem is once that credential is owned, not only can a bad actor assume your identity any place you have used it, they can use it in new places you are not aware of to assume your identity.&#8221;<\/span><\/p>\n<p style=\"text-align: justify\"><b>Thank you to these experts for their time and expertise on password security strategies!<\/b><\/p>\n<p style=\"text-align: justify\"><br \/>Widget not in any sidebars<br \/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Despite their inherent problems, most users interact with their digital identities through passwords. Therefore, your enterprise must start to develop and adopt password security strategies across the network. Why Your Enterprise Needs Password Security Strategies Unfortunately, trusting employees to create strong passwords on their own may no longer serve as a tenable strategy. According to [&hellip;]<\/p>\n","protected":false},"author":41,"featured_media":2422,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[5],"tags":[142,125,1041,1040,16,112,76,145,124,91,123,90,461,205,1011],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>It&#039;s Time to Embrace Password Security Strategies<\/title>\n<meta name=\"description\" content=\"Most users interact with their digital identities through passwords. Therefore, your enterprise must start to adopt password security strategies.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/identity-management\/its-time-to-embrace-password-security-strategies\/\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Ben Canner\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/its-time-to-embrace-password-security-strategies\/\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/its-time-to-embrace-password-security-strategies\/\",\"name\":\"It's Time to Embrace Password Security Strategies\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/its-time-to-embrace-password-security-strategies\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/its-time-to-embrace-password-security-strategies\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/03\/glowing-fingerprint-mod.jpg\",\"datePublished\":\"2019-02-05T16:51:48+00:00\",\"dateModified\":\"2019-02-05T16:51:48+00:00\",\"author\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\"},\"description\":\"Most users interact with their digital identities through passwords. Therefore, your enterprise must start to adopt password security strategies.\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/its-time-to-embrace-password-security-strategies\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/identity-management\/its-time-to-embrace-password-security-strategies\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/its-time-to-embrace-password-security-strategies\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/03\/glowing-fingerprint-mod.jpg\",\"contentUrl\":\"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/03\/glowing-fingerprint-mod.jpg\",\"width\":800,\"height\":400,\"caption\":\"Findings: The Forrester Wave: Privileged Identity Management (PIM), Q4 2020\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/its-time-to-embrace-password-security-strategies\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/identity-management\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"It&#8217;s Time to Embrace Password Security Strategies\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#website\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/\",\"name\":\"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, &amp; Services\",\"description\":\"Identity Access Management (IAM) News, Best Practices and Buyer&#039;s Guide\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\",\"name\":\"Ben Canner\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"caption\":\"Ben Canner\"},\"description\":\"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.\",\"url\":\"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"It's Time to Embrace Password Security Strategies","description":"Most users interact with their digital identities through passwords. Therefore, your enterprise must start to adopt password security strategies.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/identity-management\/its-time-to-embrace-password-security-strategies\/","twitter_misc":{"Written by":"Ben Canner","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/identity-management\/its-time-to-embrace-password-security-strategies\/","url":"https:\/\/solutionsreview.com\/identity-management\/its-time-to-embrace-password-security-strategies\/","name":"It's Time to Embrace Password Security Strategies","isPartOf":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/identity-management\/its-time-to-embrace-password-security-strategies\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/identity-management\/its-time-to-embrace-password-security-strategies\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/03\/glowing-fingerprint-mod.jpg","datePublished":"2019-02-05T16:51:48+00:00","dateModified":"2019-02-05T16:51:48+00:00","author":{"@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541"},"description":"Most users interact with their digital identities through passwords. Therefore, your enterprise must start to adopt password security strategies.","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/identity-management\/its-time-to-embrace-password-security-strategies\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/identity-management\/its-time-to-embrace-password-security-strategies\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/its-time-to-embrace-password-security-strategies\/#primaryimage","url":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/03\/glowing-fingerprint-mod.jpg","contentUrl":"https:\/\/solutionsreview.com\/identity-management\/files\/2018\/03\/glowing-fingerprint-mod.jpg","width":800,"height":400,"caption":"Findings: The Forrester Wave: Privileged Identity Management (PIM), Q4 2020"},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/identity-management\/its-time-to-embrace-password-security-strategies\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/identity-management\/"},{"@type":"ListItem","position":2,"name":"It&#8217;s Time to Embrace Password Security Strategies"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/identity-management\/#website","url":"https:\/\/solutionsreview.com\/identity-management\/","name":"Best Identity Access Management (IAM) Software, Tools, Vendors, Solutions, &amp; Services","description":"Identity Access Management (IAM) News, Best Practices and Buyer&#039;s Guide","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/identity-management\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541","name":"Ben Canner","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/identity-management\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","caption":"Ben Canner"},"description":"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.","url":"https:\/\/solutionsreview.com\/identity-management\/author\/bcanner\/"}]}},"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/4239"}],"collection":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/comments?post=4239"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/posts\/4239\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media\/2422"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/media?parent=4239"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/categories?post=4239"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/identity-management\/wp-json\/wp\/v2\/tags?post=4239"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}