Everyone seems to agree that passwords and password management are a pain. Many universities have adopted multifactor authentication, but MFA still requires the use of passwords. Organizations adopting zero-trust security measures may want to look for something stronger.
Passwordless authentication is MFA without a password. Instead, it uses biometric verification, cryptographic keys and other types of authentication factors frequently supported by existing devices. Companies such as Microsoft, Apple and Google already support these standards in their products and services.
Here are four things university IT leaders should keep in mind when considering whether to adopt passwordless authentication.
1. It Can Be Rolled Out Gradually
For example, you could start with a pilot for some of your administrative employees, especially those most likely to be targeted by attackers. Then you could expand the pilot to include more administrative staff and any other users who volunteer for early adoption. Over time, you could make passwordless authentication available to many more university users.
Click the banner below to find out how identity and access management paves the way to zero trust.